General
-
Target
3c4b843ef055390db5f4a5db8b048b7ea93cb5c5e85cd74614275a24ddc7b425
-
Size
715KB
-
Sample
210820-pv9c7yz6j6
-
MD5
db3f15a0d0129c50bdd78d7d8ac0b33a
-
SHA1
983cd33446f61723393203a1b300146dff067d8e
-
SHA256
3c4b843ef055390db5f4a5db8b048b7ea93cb5c5e85cd74614275a24ddc7b425
-
SHA512
dc53c453d7e5d730a027b5e83bbad587df2f75ddb61d0e544e4a906e8842ad35d7dfda0d23df2112599b68d27290e9b0bb2a1ff797eab803313791f61cb05441
Static task
static1
Behavioral task
behavioral1
Sample
3c4b843ef055390db5f4a5db8b048b7ea93cb5c5e85cd74614275a24ddc7b425.exe
Resource
win7v20210410
Malware Config
Extracted
dridex
10111
50.116.62.25:8194
144.76.85.240:9043
185.143.48.16:7443
Targets
-
-
Target
3c4b843ef055390db5f4a5db8b048b7ea93cb5c5e85cd74614275a24ddc7b425
-
Size
715KB
-
MD5
db3f15a0d0129c50bdd78d7d8ac0b33a
-
SHA1
983cd33446f61723393203a1b300146dff067d8e
-
SHA256
3c4b843ef055390db5f4a5db8b048b7ea93cb5c5e85cd74614275a24ddc7b425
-
SHA512
dc53c453d7e5d730a027b5e83bbad587df2f75ddb61d0e544e4a906e8842ad35d7dfda0d23df2112599b68d27290e9b0bb2a1ff797eab803313791f61cb05441
-
Dridex v4 dropper C2 parsing function
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-