dridex | 0bfd3be14a21002a30906d2bb5d600e8a36579961e5245f544e06e415a2d36c3 | Triage

Submit
Reports

Overview

overview

Static

static

dridex

windows10_x64

Sharing

General

Target

0bfd3be14a21002a30906d2bb5d600e8a36579961e5245f544e06e415a2d36c3
Size

170KB
Sample

210611-whyvd5gvjx
MD5

2453513aaea3e4943edf7a895ed20a9e
SHA1

21dbb8e1d6da0d79fb967f4f140d3a632b342452
SHA256

0bfd3be14a21002a30906d2bb5d600e8a36579961e5245f544e06e415a2d36c3
SHA512

b50714c17a913fbbde67a838a0f6209240f5442bfdb46ee7aa34f69871d8df47cb32005e07684e288c6612807329ee0686986d8b249f20560e6e9add741bc1e4

Score

10^/10

dridex 40112 botnet loader

Static task

static1

Behavioral task

behavioral1

Sample

0bfd3be14a21002a30906d2bb5d600e8a36579961e5245f544e06e415a2d36c3.dll

Resource

win10v20210410

dridex 40112 botnet loader

windows10_x64

0 signatures

0 seconds

Malware Config

Extracted

Family

dridex

Botnet

40112

C2

128.199.200.38:443

192.163.233.216:6601

43.229.206.244:4125

rc4.plain

rc4.plain

Targets

- Target
  
  0bfd3be14a21002a30906d2bb5d600e8a36579961e5245f544e06e415a2d36c3
- Size
  
  170KB
- MD5
  
  2453513aaea3e4943edf7a895ed20a9e
- SHA1
  
  21dbb8e1d6da0d79fb967f4f140d3a632b342452
- SHA256
  
  0bfd3be14a21002a30906d2bb5d600e8a36579961e5245f544e06e415a2d36c3
- SHA512
  
  b50714c17a913fbbde67a838a0f6209240f5442bfdb46ee7aa34f69871d8df47cb32005e07684e288c6612807329ee0686986d8b249f20560e6e9add741bc1e4
Score

10^/10

dridex 40112 botnet loader
- Dridex
  Dridex(known as Bugat/Cridex) is a form of malware that specializes in stealing bank credentials.
  botnet dridex
- Dridex Loader
  Detects Dridex both x86 and x64 loader in memory.
  botnet loader
behavioral1

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

dridex40112botnetloader

© 2018-2024

Terms | Privacy