General

  • Target

    10b50a735af742d5230abd1e6618b59c1f71d60811d3ba90e587f506e56e235c

  • Size

    170KB

  • Sample

    210615-fsljredwmj

  • MD5

    eb508d7fc511805071573acb489f9a98

  • SHA1

    f9b7a65765498f41daca4deeb39d3b50c65b0445

  • SHA256

    10b50a735af742d5230abd1e6618b59c1f71d60811d3ba90e587f506e56e235c

  • SHA512

    8510de5b281b19995a4c232df332b44e3a0b931657faf6b18c6c16843b691969e1675a4462dcf4dafdfbbdaaaaeab524ba174202b06a019d676d9d7283437845

Malware Config

Extracted

Family

dridex

Botnet

40112

C2

128.199.200.38:443

192.163.233.216:6601

43.229.206.244:4125

rc4.plain
rc4.plain

Targets

    • Target

      10b50a735af742d5230abd1e6618b59c1f71d60811d3ba90e587f506e56e235c

    • Size

      170KB

    • MD5

      eb508d7fc511805071573acb489f9a98

    • SHA1

      f9b7a65765498f41daca4deeb39d3b50c65b0445

    • SHA256

      10b50a735af742d5230abd1e6618b59c1f71d60811d3ba90e587f506e56e235c

    • SHA512

      8510de5b281b19995a4c232df332b44e3a0b931657faf6b18c6c16843b691969e1675a4462dcf4dafdfbbdaaaaeab524ba174202b06a019d676d9d7283437845

    • Dridex

      Dridex(known as Bugat/Cridex) is a form of malware that specializes in stealing bank credentials.

    • Dridex Loader

      Detects Dridex both x86 and x64 loader in memory.

MITRE ATT&CK Matrix

Tasks