General
-
Target
727480f59a875531de664c9b0b28be52e89fefd526f0f48cf58a60b5cbd72e78
-
Size
836KB
-
Sample
210930-nc6cdshecn
-
MD5
83fde71058621e61972a1ccb752287d1
-
SHA1
dab9e2ec800d9437556f4752470a5ba74bf53de6
-
SHA256
727480f59a875531de664c9b0b28be52e89fefd526f0f48cf58a60b5cbd72e78
-
SHA512
ac4902a487fe637929cde77709df2f34194f0f340f4fea943e7c5be7094b10d7de2dddd5583267b54deb2cf9a202ecb745841822d71d24067aad7018b256a759
Malware Config
Targets
-
-
Target
727480f59a875531de664c9b0b28be52e89fefd526f0f48cf58a60b5cbd72e78
-
Size
836KB
-
MD5
83fde71058621e61972a1ccb752287d1
-
SHA1
dab9e2ec800d9437556f4752470a5ba74bf53de6
-
SHA256
727480f59a875531de664c9b0b28be52e89fefd526f0f48cf58a60b5cbd72e78
-
SHA512
ac4902a487fe637929cde77709df2f34194f0f340f4fea943e7c5be7094b10d7de2dddd5583267b54deb2cf9a202ecb745841822d71d24067aad7018b256a759
Score10/10-
Dridex
Dridex(known as Bugat/Cridex) is a form of malware that specializes in stealing bank credentials.
-
Dridex Payload
Detects Dridex x64 core DLL in memory.
-
Dridex Shellcode
Detects Dridex Payload shellcode injected in Explorer process.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
Checks whether UAC is enabled
-