d10bf9308283ce34766580ab69a992cc9d371b82ed5dc0e28159597e1b500c17

General
Target

d10bf9308283ce34766580ab69a992cc9d371b82ed5dc0e28159597e1b500c17

Size

174KB

Sample

210611-lmxwlfzfga

Score
10 /10
MD5

0930b8545408592a02a128cbd31d1149

SHA1

0f8d6240e8aa7219c478800c8d2950e31b30aadc

SHA256

d10bf9308283ce34766580ab69a992cc9d371b82ed5dc0e28159597e1b500c17

SHA512

f9bee756e9474fde693b0ec2907b0028efbe80d2e52ecd6b7e37091da3959412a9009cfd19a206343714ea0b0d1c9d5baef961fff8c892b9aaefa459adfeac12

Malware Config

Extracted

Family dridex
Botnet 22201
C2

178.128.220.64:30333

45.79.91.89:9987

rc4.plain
rc4.plain
Targets
Target

d10bf9308283ce34766580ab69a992cc9d371b82ed5dc0e28159597e1b500c17

MD5

0930b8545408592a02a128cbd31d1149

Filesize

174KB

Score
10 /10
SHA1

0f8d6240e8aa7219c478800c8d2950e31b30aadc

SHA256

d10bf9308283ce34766580ab69a992cc9d371b82ed5dc0e28159597e1b500c17

SHA512

f9bee756e9474fde693b0ec2907b0028efbe80d2e52ecd6b7e37091da3959412a9009cfd19a206343714ea0b0d1c9d5baef961fff8c892b9aaefa459adfeac12

Tags

Signatures

  • Dridex

    Description

    Dridex(known as Bugat/Cridex) is a form of malware that specializes in stealing bank credentials.

    Tags

  • Dridex Loader

    Description

    Detects Dridex both x86 and x64 loader in memory.

    Tags

Related Tasks

MITRE ATT&CK Matrix
Collection
    Command and Control
      Credential Access
        Defense Evasion
          Discovery
            Execution
              Exfiltration
                Impact
                  Initial Access
                    Lateral Movement
                      Persistence
                        Privilege Escalation
                          Tasks

                          static1

                          behavioral1

                          10/10