Overview

overview

10

Static

static

SecuriteIn...06.dll

windows7_x64

10

SecuriteIn...06.dll

windows10_x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    SecuriteInfo.com.W32.AIDetect.malware2.31993.22306

  • Size

    175KB

  • Sample

    210721-sfecj8pywj

  • MD5

    65638d179046f7caec06dc03e508b040

  • SHA1

    351ee428ccaa279257ac8fc493eafc62beda580b

  • SHA256

    1a560adb810b924e65f91e34664166be2c2adac10f7f28c075d902e4adb1112c

  • SHA512

    c17078c4555cac26a501c81c13a4214b1934b097a925862da7e0b2abb1d959f997cb8fbfaa19b20be1d761fad7218a915d907e7f2b7fe4f0f84b471a93c3e526

Score
10/10
dridex22201botnetloader

Malware Config

Extracted

Family

dridex

Botnet

22201

C2

178.238.236.59:443

104.245.52.73:5007

81.0.236.93:13786
rc4.plain
rc4.plain

Targets

    • Target

      SecuriteInfo.com.W32.AIDetect.malware2.31993.22306

    • Size

      175KB

    • MD5

      65638d179046f7caec06dc03e508b040

    • SHA1

      351ee428ccaa279257ac8fc493eafc62beda580b

    • SHA256

      1a560adb810b924e65f91e34664166be2c2adac10f7f28c075d902e4adb1112c

    • SHA512

      c17078c4555cac26a501c81c13a4214b1934b097a925862da7e0b2abb1d959f997cb8fbfaa19b20be1d761fad7218a915d907e7f2b7fe4f0f84b471a93c3e526

    Score
    10/10
    dridex22201botnetloader

    • Dridex

      Dridex(known as Bugat/Cridex) is a form of malware that specializes in stealing bank credentials.

      botnetdridex

    • Dridex Loader

      Detects Dridex both x86 and x64 loader in memory.

      botnetloader
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks