General

  • Target

    0d53e430d49455b5b9db27df527ea758d9eb94861a4bf7a66d22b9cad6935f72

  • Size

    172KB

  • Sample

    210615-a7jkzjlkt6

  • MD5

    8fe4a74db93406fd9a27f7d28b1340ce

  • SHA1

    fdf010cc49eabf8172628df186ecd8461f51e731

  • SHA256

    0d53e430d49455b5b9db27df527ea758d9eb94861a4bf7a66d22b9cad6935f72

  • SHA512

    07be74f3c4d387d97855a59c1e64cbd406f64a9306a7bc40b678c19144bff62806d3e8deceacee52cd76154e7194abd8b62968b2a827924d7399ca10e17e3efe

Malware Config

Extracted

Family

dridex

Botnet

40112

C2

210.65.244.187:443

162.241.41.92:2303

46.231.204.10:8172

185.183.159.100:4125

rc4.plain
rc4.plain

Targets

    • Target

      0d53e430d49455b5b9db27df527ea758d9eb94861a4bf7a66d22b9cad6935f72

    • Size

      172KB

    • MD5

      8fe4a74db93406fd9a27f7d28b1340ce

    • SHA1

      fdf010cc49eabf8172628df186ecd8461f51e731

    • SHA256

      0d53e430d49455b5b9db27df527ea758d9eb94861a4bf7a66d22b9cad6935f72

    • SHA512

      07be74f3c4d387d97855a59c1e64cbd406f64a9306a7bc40b678c19144bff62806d3e8deceacee52cd76154e7194abd8b62968b2a827924d7399ca10e17e3efe

    • Dridex

      Dridex(known as Bugat/Cridex) is a form of malware that specializes in stealing bank credentials.

    • Dridex Loader

      Detects Dridex both x86 and x64 loader in memory.

MITRE ATT&CK Matrix

Tasks