General

  • Target

    e3cb96884754ffa9d517da7de2935f39584aab7871445c405b9a103d111adf42

  • Size

    172KB

  • Sample

    210615-kpg2z976g2

  • MD5

    674ad75ea88ef422df0d4ce16a6c65f1

  • SHA1

    2a55aa6327d017a82f1810b300cc64d51d2e0b3f

  • SHA256

    e3cb96884754ffa9d517da7de2935f39584aab7871445c405b9a103d111adf42

  • SHA512

    dec2f77a40d7e67295510f696c5865244300b2a15ee6f15cc20db811f50f58332d5aa6e38db3846afd45c732c058a5b2aef0b7e351133e9a2a70e348499c24e7

Malware Config

Extracted

Family

dridex

Botnet

40112

C2

210.65.244.187:443

162.241.41.92:2303

46.231.204.10:8172

185.183.159.100:4125

rc4.plain
rc4.plain

Targets

    • Target

      e3cb96884754ffa9d517da7de2935f39584aab7871445c405b9a103d111adf42

    • Size

      172KB

    • MD5

      674ad75ea88ef422df0d4ce16a6c65f1

    • SHA1

      2a55aa6327d017a82f1810b300cc64d51d2e0b3f

    • SHA256

      e3cb96884754ffa9d517da7de2935f39584aab7871445c405b9a103d111adf42

    • SHA512

      dec2f77a40d7e67295510f696c5865244300b2a15ee6f15cc20db811f50f58332d5aa6e38db3846afd45c732c058a5b2aef0b7e351133e9a2a70e348499c24e7

    • Dridex

      Dridex(known as Bugat/Cridex) is a form of malware that specializes in stealing bank credentials.

    • Dridex Loader

      Detects Dridex both x86 and x64 loader in memory.

MITRE ATT&CK Matrix

Tasks