Overview

overview

7

Static

static

dridex

windows10_x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    43377fb717c3c6b7d947f14b4a1b46ebc247333911c27d7227d2d2bc1a65cabd

  • Size

    388KB

  • Sample

    210928-hfzq5aahfp

  • MD5

    3f6985e4c15f50ed7bdd4848764366f8

  • SHA1

    cc7ff105fb7d42f300e4431afe1378fcd708632b

  • SHA256

    43377fb717c3c6b7d947f14b4a1b46ebc247333911c27d7227d2d2bc1a65cabd

  • SHA512

    f166e6f0ed378ab95a82a907f5738cdaa871510ca14d06b9cf9bdc0e79ba9f0f81cc4ad8eef52da4a0df6e6cfc33cf4bf7eab53a5b6375a07dea0873f088a3ad

Score
7/10
microsoftphishing

Malware Config

Targets

    • Target

      43377fb717c3c6b7d947f14b4a1b46ebc247333911c27d7227d2d2bc1a65cabd

    • Size

      388KB

    • MD5

      3f6985e4c15f50ed7bdd4848764366f8

    • SHA1

      cc7ff105fb7d42f300e4431afe1378fcd708632b

    • SHA256

      43377fb717c3c6b7d947f14b4a1b46ebc247333911c27d7227d2d2bc1a65cabd

    • SHA512

      f166e6f0ed378ab95a82a907f5738cdaa871510ca14d06b9cf9bdc0e79ba9f0f81cc4ad8eef52da4a0df6e6cfc33cf4bf7eab53a5b6375a07dea0873f088a3ad

    Score
    7/10
    microsoftphishing

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Detected potential entity reuse from brand microsoft.

      phishingmicrosoft
    behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

Query Registry

1
T1012

System Information Discovery

1
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks