General

  • Target

    dbafacaff214097865316d6ea23cb4d6b4fe5873085a049bd46e995a27ecf9ec

  • Size

    172KB

  • Sample

    210615-z6e7hpw2ra

  • MD5

    d42d1abd578810a0ce7ad1dc903ed68c

  • SHA1

    f1c8e8026e24820dc61957114d52e1b31cd09338

  • SHA256

    dbafacaff214097865316d6ea23cb4d6b4fe5873085a049bd46e995a27ecf9ec

  • SHA512

    34433af333ac9c9d77bcaeb6fdb93e0db25a01af4c11f027c62be7a7ebd166e8be6411cb91bb13babfee9c9465ae6992d9bf8f0a654d61be3eef90df7e828b1e

Malware Config

Extracted

Family

dridex

Botnet

40112

C2

210.65.244.187:443

162.241.41.92:2303

46.231.204.10:8172

185.183.159.100:4125

rc4.plain
rc4.plain

Targets

    • Target

      dbafacaff214097865316d6ea23cb4d6b4fe5873085a049bd46e995a27ecf9ec

    • Size

      172KB

    • MD5

      d42d1abd578810a0ce7ad1dc903ed68c

    • SHA1

      f1c8e8026e24820dc61957114d52e1b31cd09338

    • SHA256

      dbafacaff214097865316d6ea23cb4d6b4fe5873085a049bd46e995a27ecf9ec

    • SHA512

      34433af333ac9c9d77bcaeb6fdb93e0db25a01af4c11f027c62be7a7ebd166e8be6411cb91bb13babfee9c9465ae6992d9bf8f0a654d61be3eef90df7e828b1e

    • Dridex

      Dridex(known as Bugat/Cridex) is a form of malware that specializes in stealing bank credentials.

    • Dridex Loader

      Detects Dridex both x86 and x64 loader in memory.

MITRE ATT&CK Matrix

Tasks