Overview

overview

8

Static

static

dridex

windows10_x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    a611c1e9dcec711840ea9295cb66ee04dc68f3a154e1abac99ffc88047464053

  • Size

    4.8MB

  • Sample

    211014-g9vhtsgcg8

  • MD5

    ee4ebaecca0009f0bd995c7d5d6ea7c1

  • SHA1

    fa084f9d343b14cee9adb96e97b1821f83f777e0

  • SHA256

    a611c1e9dcec711840ea9295cb66ee04dc68f3a154e1abac99ffc88047464053

  • SHA512

    373e58711b83d8e45edbaf1af732643ce31fd8f02da0884e0fecb4e8a2096eb0b6bfe99d8ef83a8f2a251769973a7e6cbbe16513a066eb39697a5a52a51cc66a

Score
8/10

Malware Config

Targets

    • Target

      a611c1e9dcec711840ea9295cb66ee04dc68f3a154e1abac99ffc88047464053

    • Size

      4.8MB

    • MD5

      ee4ebaecca0009f0bd995c7d5d6ea7c1

    • SHA1

      fa084f9d343b14cee9adb96e97b1821f83f777e0

    • SHA256

      a611c1e9dcec711840ea9295cb66ee04dc68f3a154e1abac99ffc88047464053

    • SHA512

      373e58711b83d8e45edbaf1af732643ce31fd8f02da0884e0fecb4e8a2096eb0b6bfe99d8ef83a8f2a251769973a7e6cbbe16513a066eb39697a5a52a51cc66a

    Score
    8/10

    • Executes dropped EXE

    • Suspicious use of NtSetInformationThreadHideFromDebugger

    behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Scheduled Task

1
T1053

Persistence

Scheduled Task

1
T1053

Privilege Escalation

Scheduled Task

1
T1053

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks