General

  • Target

    8b8ec117d4cc2eb8cb246433c1090dec

  • Size

    176KB

  • Sample

    210721-rhgcfgsnds

  • MD5

    8b8ec117d4cc2eb8cb246433c1090dec

  • SHA1

    61dc358323c1df9334c5169e133ba57ee6bc5186

  • SHA256

    ef08eafe517a3af06bb806865de42aac88231aac2e1462fa5b44b0db7231cf28

  • SHA512

    d696dcfdbffca68e0bf95bf6034c59b8276a4ca18f30de254e9b86d35623130b20ddd5ef66f1df4e1bbf9b23f2a075dd5991cbc059b16cfe9749f1d0c45970dc

Malware Config

Extracted

Family

dridex

Botnet

22202

C2

178.238.236.59:443

104.245.52.73:5007

81.0.236.93:13786

rc4.plain
rc4.plain

Targets

    • Target

      8b8ec117d4cc2eb8cb246433c1090dec

    • Size

      176KB

    • MD5

      8b8ec117d4cc2eb8cb246433c1090dec

    • SHA1

      61dc358323c1df9334c5169e133ba57ee6bc5186

    • SHA256

      ef08eafe517a3af06bb806865de42aac88231aac2e1462fa5b44b0db7231cf28

    • SHA512

      d696dcfdbffca68e0bf95bf6034c59b8276a4ca18f30de254e9b86d35623130b20ddd5ef66f1df4e1bbf9b23f2a075dd5991cbc059b16cfe9749f1d0c45970dc

    • Dridex

      Dridex(known as Bugat/Cridex) is a form of malware that specializes in stealing bank credentials.

    • Dridex Loader

      Detects Dridex both x86 and x64 loader in memory.

MITRE ATT&CK Matrix

Tasks