General

  • Target

    be0fa3fa171f087c859695d7c7bd85fba80f2418fc204319dcb1986ce2f2dc5c

  • Size

    172KB

  • Sample

    210615-fv41hfztqj

  • MD5

    6346818dcd3731784b9b45ab765110f3

  • SHA1

    1867e47dff07c8800208061171bc4f6381a2655f

  • SHA256

    be0fa3fa171f087c859695d7c7bd85fba80f2418fc204319dcb1986ce2f2dc5c

  • SHA512

    91f35f3e2aeadb2378c165b59ff7372ff9ec78914716a093c7000e34cdb94d79ddfe53cbe25d9d80967a2b1c0b8afcf6bc16efbd3a55fa19b681401fa848094b

Malware Config

Extracted

Family

dridex

Botnet

40112

C2

210.65.244.187:443

162.241.41.92:2303

46.231.204.10:8172

185.183.159.100:4125

rc4.plain
rc4.plain

Targets

    • Target

      be0fa3fa171f087c859695d7c7bd85fba80f2418fc204319dcb1986ce2f2dc5c

    • Size

      172KB

    • MD5

      6346818dcd3731784b9b45ab765110f3

    • SHA1

      1867e47dff07c8800208061171bc4f6381a2655f

    • SHA256

      be0fa3fa171f087c859695d7c7bd85fba80f2418fc204319dcb1986ce2f2dc5c

    • SHA512

      91f35f3e2aeadb2378c165b59ff7372ff9ec78914716a093c7000e34cdb94d79ddfe53cbe25d9d80967a2b1c0b8afcf6bc16efbd3a55fa19b681401fa848094b

    • Dridex

      Dridex(known as Bugat/Cridex) is a form of malware that specializes in stealing bank credentials.

    • Dridex Loader

      Detects Dridex both x86 and x64 loader in memory.

MITRE ATT&CK Matrix

Tasks