General
-
Target
7c376bc9e491cfd6f040cc6e384542ef5bb9121501b1f55495f37db4af7b9171
-
Size
608KB
-
Sample
211014-hvk7aagcej
-
MD5
f0424e37d6d0f0bb66ddbe16b4bd3359
-
SHA1
072c2d81160f60d8d8db4cf5cfb543ebddcf6c8c
-
SHA256
7c376bc9e491cfd6f040cc6e384542ef5bb9121501b1f55495f37db4af7b9171
-
SHA512
8d562d11d76758a78f9a7d80eb615c3584511f0bcfa81f260265d7a9f7ccb9ca1ff6ea78f9b6cf3c6fa2ab7039eeac02b588bc10cffd5caaadf9b9bed879161c
Static task
static1
Malware Config
Extracted
dridex
10444
174.128.245.202:443
51.83.3.52:13786
69.64.50.41:6602
Targets
-
-
Target
7c376bc9e491cfd6f040cc6e384542ef5bb9121501b1f55495f37db4af7b9171
-
Size
608KB
-
MD5
f0424e37d6d0f0bb66ddbe16b4bd3359
-
SHA1
072c2d81160f60d8d8db4cf5cfb543ebddcf6c8c
-
SHA256
7c376bc9e491cfd6f040cc6e384542ef5bb9121501b1f55495f37db4af7b9171
-
SHA512
8d562d11d76758a78f9a7d80eb615c3584511f0bcfa81f260265d7a9f7ccb9ca1ff6ea78f9b6cf3c6fa2ab7039eeac02b588bc10cffd5caaadf9b9bed879161c
-
Blocklisted process makes network request
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-