General
-
Target
40ed003c4510204a7e2565c4b3ba7e4bd57828efe7dff5ba6187e5114edcc559
-
Size
608KB
-
Sample
211014-hvc6nsgda9
-
MD5
142f55eed774d084d138a9471ea30f3d
-
SHA1
3053c362ca2d787aa4b63407b00649f766d0fe9e
-
SHA256
40ed003c4510204a7e2565c4b3ba7e4bd57828efe7dff5ba6187e5114edcc559
-
SHA512
a371f090b3e18fec9b6b89f7b98d78df66b4b269d2f87c044d20c170b8bf277e8867631a81b923d6c31f5dc0ea9d1847ff1f0559230911148c521c557a360571
Static task
static1
Malware Config
Extracted
dridex
10444
174.128.245.202:443
51.83.3.52:13786
69.64.50.41:6602
Targets
-
-
Target
40ed003c4510204a7e2565c4b3ba7e4bd57828efe7dff5ba6187e5114edcc559
-
Size
608KB
-
MD5
142f55eed774d084d138a9471ea30f3d
-
SHA1
3053c362ca2d787aa4b63407b00649f766d0fe9e
-
SHA256
40ed003c4510204a7e2565c4b3ba7e4bd57828efe7dff5ba6187e5114edcc559
-
SHA512
a371f090b3e18fec9b6b89f7b98d78df66b4b269d2f87c044d20c170b8bf277e8867631a81b923d6c31f5dc0ea9d1847ff1f0559230911148c521c557a360571
-
Blocklisted process makes network request
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-