General

  • Target

    5ad4d75b36e2b3ccb62783fdfeb7cbfd2d6b065068cc1905b8f583015a7919c4

  • Size

    172KB

  • Sample

    210615-k4zc5z4psa

  • MD5

    ff550ef66b22d0a5979d2434975f303a

  • SHA1

    a40e065f319c8aca0e23bf55eefc6ef8ee114d70

  • SHA256

    5ad4d75b36e2b3ccb62783fdfeb7cbfd2d6b065068cc1905b8f583015a7919c4

  • SHA512

    d5110c3a78c213f543fda1f9ffaf0a78aca423cd7876a815f19acaca3c2eb8e6eacf5c9132148eebb273911676b59720c4b7e748b72dbe2d5b6a9158d2c26084

Malware Config

Extracted

Family

dridex

Botnet

40112

C2

210.65.244.187:443

162.241.41.92:2303

46.231.204.10:8172

185.183.159.100:4125

rc4.plain
rc4.plain

Targets

    • Target

      5ad4d75b36e2b3ccb62783fdfeb7cbfd2d6b065068cc1905b8f583015a7919c4

    • Size

      172KB

    • MD5

      ff550ef66b22d0a5979d2434975f303a

    • SHA1

      a40e065f319c8aca0e23bf55eefc6ef8ee114d70

    • SHA256

      5ad4d75b36e2b3ccb62783fdfeb7cbfd2d6b065068cc1905b8f583015a7919c4

    • SHA512

      d5110c3a78c213f543fda1f9ffaf0a78aca423cd7876a815f19acaca3c2eb8e6eacf5c9132148eebb273911676b59720c4b7e748b72dbe2d5b6a9158d2c26084

    • Dridex

      Dridex(known as Bugat/Cridex) is a form of malware that specializes in stealing bank credentials.

    • Dridex Loader

      Detects Dridex both x86 and x64 loader in memory.

MITRE ATT&CK Matrix

Tasks