General
-
Target
d410c2697172cb9048cf9f1083ea2e2cbe21ba7298c9a73c6207757058399441
-
Size
608KB
-
Sample
211014-hvd3zagccr
-
MD5
bc02cdc27c82b3f8c2299a816fca5052
-
SHA1
836f462f5296ba2c8c35f1332cf00e5838cb6407
-
SHA256
d410c2697172cb9048cf9f1083ea2e2cbe21ba7298c9a73c6207757058399441
-
SHA512
3e929e2cec653d853c4c97dd4183b5495db3d00d8f5eadb48d98b56881d2910e0146be7cba20bd1c0ac9a99676049643b1fb2ad2be19996d9f84f8da489bfe2f
Static task
static1
Malware Config
Extracted
dridex
10444
174.128.245.202:443
51.83.3.52:13786
69.64.50.41:6602
Targets
-
-
Target
d410c2697172cb9048cf9f1083ea2e2cbe21ba7298c9a73c6207757058399441
-
Size
608KB
-
MD5
bc02cdc27c82b3f8c2299a816fca5052
-
SHA1
836f462f5296ba2c8c35f1332cf00e5838cb6407
-
SHA256
d410c2697172cb9048cf9f1083ea2e2cbe21ba7298c9a73c6207757058399441
-
SHA512
3e929e2cec653d853c4c97dd4183b5495db3d00d8f5eadb48d98b56881d2910e0146be7cba20bd1c0ac9a99676049643b1fb2ad2be19996d9f84f8da489bfe2f
-
Blocklisted process makes network request
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-