General

  • Target

    139ac208ed1487b9a3151df91aae5db210955804f0852b2804ab6ca09b09f4ed

  • Size

    170KB

  • Sample

    210615-e3j44zb9sn

  • MD5

    329a581006313ecd94bff664d44018a7

  • SHA1

    565d040dfc0abc58d2b44742d64fa10741d787cf

  • SHA256

    139ac208ed1487b9a3151df91aae5db210955804f0852b2804ab6ca09b09f4ed

  • SHA512

    ff472c9bacb37e445e5815b744d5ebe5014d402e52aed70ea0c5d334492a9b13e2d6e086ad690444e495212d1c3649a2ac13d5b7ed390a09a6bfde51011e9809

Malware Config

Extracted

Family

dridex

Botnet

40112

C2

128.199.200.38:443

192.163.233.216:6601

43.229.206.244:4125

rc4.plain
rc4.plain

Targets

    • Target

      139ac208ed1487b9a3151df91aae5db210955804f0852b2804ab6ca09b09f4ed

    • Size

      170KB

    • MD5

      329a581006313ecd94bff664d44018a7

    • SHA1

      565d040dfc0abc58d2b44742d64fa10741d787cf

    • SHA256

      139ac208ed1487b9a3151df91aae5db210955804f0852b2804ab6ca09b09f4ed

    • SHA512

      ff472c9bacb37e445e5815b744d5ebe5014d402e52aed70ea0c5d334492a9b13e2d6e086ad690444e495212d1c3649a2ac13d5b7ed390a09a6bfde51011e9809

    • Dridex

      Dridex(known as Bugat/Cridex) is a form of malware that specializes in stealing bank credentials.

    • Dridex Loader

      Detects Dridex both x86 and x64 loader in memory.

MITRE ATT&CK Matrix

Tasks