General
-
Target
2a874fd361ce8fac4c54c999244a8fba32a90a0464006d04f9508537d05bc33a
-
Size
196KB
-
Sample
210620-pmfbwy654n
-
MD5
2bfbf7a6006fd28d039b6391de8b3521
-
SHA1
b9e751afc21d652aa756626dbffab71a04308a12
-
SHA256
2a874fd361ce8fac4c54c999244a8fba32a90a0464006d04f9508537d05bc33a
-
SHA512
73327e28eb136a32baf95a047e77900e1c75077d54407527f6605e491dc8b01ef8f36c05718def46a2598d44066120baabda6d222ca24011fabe196fdb144fd8
Static task
static1
Malware Config
Extracted
dridex
111
37.247.35.132:443
50.243.30.51:6601
162.241.204.234:6516
Targets
-
-
Target
2a874fd361ce8fac4c54c999244a8fba32a90a0464006d04f9508537d05bc33a
-
Size
196KB
-
MD5
2bfbf7a6006fd28d039b6391de8b3521
-
SHA1
b9e751afc21d652aa756626dbffab71a04308a12
-
SHA256
2a874fd361ce8fac4c54c999244a8fba32a90a0464006d04f9508537d05bc33a
-
SHA512
73327e28eb136a32baf95a047e77900e1c75077d54407527f6605e491dc8b01ef8f36c05718def46a2598d44066120baabda6d222ca24011fabe196fdb144fd8
-
Blocklisted process makes network request
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-