General
-
Target
05865b3f6c351e031582792fd5007df5e674b0a046dc7d0297d73e5e27929a42
-
Size
608KB
-
Sample
211014-hvs7wsgcer
-
MD5
9b7a0f7c600a870e78aa98fcf195779e
-
SHA1
9d95ae8a7fafde7dd48f706e0dbb4f2a0b7c6053
-
SHA256
05865b3f6c351e031582792fd5007df5e674b0a046dc7d0297d73e5e27929a42
-
SHA512
74f71cb76d7676f74ddb0cc0cba43871f4600061c77f3877b8e9aec412acf98c6c457f72d78db38f9a126a4a63b251dbb948ad831aebfe15dbdcef7677ec328e
Static task
static1
Malware Config
Extracted
dridex
10444
174.128.245.202:443
51.83.3.52:13786
69.64.50.41:6602
Targets
-
-
Target
05865b3f6c351e031582792fd5007df5e674b0a046dc7d0297d73e5e27929a42
-
Size
608KB
-
MD5
9b7a0f7c600a870e78aa98fcf195779e
-
SHA1
9d95ae8a7fafde7dd48f706e0dbb4f2a0b7c6053
-
SHA256
05865b3f6c351e031582792fd5007df5e674b0a046dc7d0297d73e5e27929a42
-
SHA512
74f71cb76d7676f74ddb0cc0cba43871f4600061c77f3877b8e9aec412acf98c6c457f72d78db38f9a126a4a63b251dbb948ad831aebfe15dbdcef7677ec328e
-
Blocklisted process makes network request
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-