1d37760ecc57201df1668e6a4eb9434ea2193c2c0c2209f020ce2b3956a33434

General
Target

1d37760ecc57201df1668e6a4eb9434ea2193c2c0c2209f020ce2b3956a33434

Size

174KB

Sample

210611-ma3e14k36n

Score
10 /10
MD5

b24080c5ea1ae53af398e594eb5f5060

SHA1

f4c2028185f209282d0ec9c2729d00f0e657e373

SHA256

1d37760ecc57201df1668e6a4eb9434ea2193c2c0c2209f020ce2b3956a33434

SHA512

f8006f249b78370eb9bc793620354fa016cc72e20e2863d65572e8076010b559ca0a6cef69f5374e8dc320be0b74c89c3ca10312888eb47f25869ae232a78c82

Malware Config

Extracted

Family dridex
Botnet 22201
C2

178.128.220.64:30333

45.79.91.89:9987

rc4.plain
rc4.plain
Targets
Target

1d37760ecc57201df1668e6a4eb9434ea2193c2c0c2209f020ce2b3956a33434

MD5

b24080c5ea1ae53af398e594eb5f5060

Filesize

174KB

Score
10 /10
SHA1

f4c2028185f209282d0ec9c2729d00f0e657e373

SHA256

1d37760ecc57201df1668e6a4eb9434ea2193c2c0c2209f020ce2b3956a33434

SHA512

f8006f249b78370eb9bc793620354fa016cc72e20e2863d65572e8076010b559ca0a6cef69f5374e8dc320be0b74c89c3ca10312888eb47f25869ae232a78c82

Tags

Signatures

  • Dridex

    Description

    Dridex(known as Bugat/Cridex) is a form of malware that specializes in stealing bank credentials.

    Tags

  • Dridex Loader

    Description

    Detects Dridex both x86 and x64 loader in memory.

    Tags

Related Tasks

MITRE ATT&CK Matrix
Collection
    Command and Control
      Credential Access
        Defense Evasion
          Discovery
            Execution
              Exfiltration
                Impact
                  Initial Access
                    Lateral Movement
                      Persistence
                        Privilege Escalation
                          Tasks

                          static1

                          behavioral1

                          10/10