General

  • Target

    13d673bd1f4c140c067162bc1712c802b956701e4faa12329da98cedc0b72ac7

  • Size

    170KB

  • Sample

    210615-7xwzwx6kx6

  • MD5

    b780014834c3419a7fb97583499aa572

  • SHA1

    e3bb15b26f5a9a47442923c23a55d2eebcbb581b

  • SHA256

    13d673bd1f4c140c067162bc1712c802b956701e4faa12329da98cedc0b72ac7

  • SHA512

    fe89a5cd180517094b81ff0880baf8a626ce9c05e1763766c523b4d496b41891271cc7d882618d3a81fec666ee864e6783425207eef1b5b80420c8a5e51b697f

Malware Config

Extracted

Family

dridex

Botnet

40112

C2

128.199.200.38:443

192.163.233.216:6601

43.229.206.244:4125

rc4.plain
rc4.plain

Targets

    • Target

      13d673bd1f4c140c067162bc1712c802b956701e4faa12329da98cedc0b72ac7

    • Size

      170KB

    • MD5

      b780014834c3419a7fb97583499aa572

    • SHA1

      e3bb15b26f5a9a47442923c23a55d2eebcbb581b

    • SHA256

      13d673bd1f4c140c067162bc1712c802b956701e4faa12329da98cedc0b72ac7

    • SHA512

      fe89a5cd180517094b81ff0880baf8a626ce9c05e1763766c523b4d496b41891271cc7d882618d3a81fec666ee864e6783425207eef1b5b80420c8a5e51b697f

    • Dridex

      Dridex(known as Bugat/Cridex) is a form of malware that specializes in stealing bank credentials.

    • Dridex Loader

      Detects Dridex both x86 and x64 loader in memory.

MITRE ATT&CK Matrix

Tasks