General

  • Target

    715b287a71c41048892653b1172ac26f568107e123ddded1fe29179aade303dc

  • Size

    172KB

  • Sample

    210615-ejy96rjl8e

  • MD5

    d446285ddfa20a78896828337079d339

  • SHA1

    55927acfd06bbe9a69f6eabee04d789bb633f3a6

  • SHA256

    715b287a71c41048892653b1172ac26f568107e123ddded1fe29179aade303dc

  • SHA512

    89bb9cfddd9f8bab1fd2e9d53fc1deec12cb857ed72dccbf1091711f7e5ba8fd0ef7237da79695d8aa013a15df9c05678de198e6651118d8fc722a6cef97c13b

Malware Config

Extracted

Family

dridex

Botnet

40112

C2

210.65.244.187:443

162.241.41.92:2303

46.231.204.10:8172

185.183.159.100:4125

rc4.plain
rc4.plain

Targets

    • Target

      715b287a71c41048892653b1172ac26f568107e123ddded1fe29179aade303dc

    • Size

      172KB

    • MD5

      d446285ddfa20a78896828337079d339

    • SHA1

      55927acfd06bbe9a69f6eabee04d789bb633f3a6

    • SHA256

      715b287a71c41048892653b1172ac26f568107e123ddded1fe29179aade303dc

    • SHA512

      89bb9cfddd9f8bab1fd2e9d53fc1deec12cb857ed72dccbf1091711f7e5ba8fd0ef7237da79695d8aa013a15df9c05678de198e6651118d8fc722a6cef97c13b

    • Dridex

      Dridex(known as Bugat/Cridex) is a form of malware that specializes in stealing bank credentials.

    • Dridex Loader

      Detects Dridex both x86 and x64 loader in memory.

MITRE ATT&CK Matrix

Tasks