General

  • Target

    39893ba508de6a5774066ac0bfce48af03bc97d239b480060441b9ed8b407c3f

  • Size

    170KB

  • Sample

    210615-z41bp7k5na

  • MD5

    5db64ffc3b6eee5f7841e9f0941af383

  • SHA1

    12ac9b7639edb0e09aacc89b1f329e35ac8e09c8

  • SHA256

    39893ba508de6a5774066ac0bfce48af03bc97d239b480060441b9ed8b407c3f

  • SHA512

    8f88a0b99df0e5416c3e60a8ebe3c8458c9cf1e36f47a90cd4c17cf84a4a4ea45da329b54f9dc57cab33e990f371f8473aa102992e2ef93026e67605a20a69e6

Malware Config

Extracted

Family

dridex

Botnet

40112

C2

128.199.200.38:443

192.163.233.216:6601

43.229.206.244:4125

rc4.plain
rc4.plain

Targets

    • Target

      39893ba508de6a5774066ac0bfce48af03bc97d239b480060441b9ed8b407c3f

    • Size

      170KB

    • MD5

      5db64ffc3b6eee5f7841e9f0941af383

    • SHA1

      12ac9b7639edb0e09aacc89b1f329e35ac8e09c8

    • SHA256

      39893ba508de6a5774066ac0bfce48af03bc97d239b480060441b9ed8b407c3f

    • SHA512

      8f88a0b99df0e5416c3e60a8ebe3c8458c9cf1e36f47a90cd4c17cf84a4a4ea45da329b54f9dc57cab33e990f371f8473aa102992e2ef93026e67605a20a69e6

    • Dridex

      Dridex(known as Bugat/Cridex) is a form of malware that specializes in stealing bank credentials.

    • Dridex Loader

      Detects Dridex both x86 and x64 loader in memory.

MITRE ATT&CK Matrix

Tasks