General

  • Target

    e75defc3df6965379d610ee1ca240819464248409b26d7891fea9cea94c741b0

  • Size

    170KB

  • Sample

    210615-waxp5z2clx

  • MD5

    295c6453a5aef11e36c38dd82f74ba91

  • SHA1

    854eaf2302b36363f27142fa2c0a14eaf77af7ac

  • SHA256

    e75defc3df6965379d610ee1ca240819464248409b26d7891fea9cea94c741b0

  • SHA512

    43de90cda0404705bc37006fd1532a1d05d82d41be2aedef3c75d3af00d6fe65bac8e4d24443e907dbbb07ddf12d6aea0a30921018deccf58a922e18e0ec4a4f

Malware Config

Extracted

Family

dridex

Botnet

40112

C2

128.199.200.38:443

192.163.233.216:6601

43.229.206.244:4125

rc4.plain
rc4.plain

Targets

    • Target

      e75defc3df6965379d610ee1ca240819464248409b26d7891fea9cea94c741b0

    • Size

      170KB

    • MD5

      295c6453a5aef11e36c38dd82f74ba91

    • SHA1

      854eaf2302b36363f27142fa2c0a14eaf77af7ac

    • SHA256

      e75defc3df6965379d610ee1ca240819464248409b26d7891fea9cea94c741b0

    • SHA512

      43de90cda0404705bc37006fd1532a1d05d82d41be2aedef3c75d3af00d6fe65bac8e4d24443e907dbbb07ddf12d6aea0a30921018deccf58a922e18e0ec4a4f

    • Dridex

      Dridex(known as Bugat/Cridex) is a form of malware that specializes in stealing bank credentials.

    • Dridex Loader

      Detects Dridex both x86 and x64 loader in memory.

MITRE ATT&CK Matrix

Tasks