General
-
Target
9c26c49ad09c11b3e0ed5f892137a4c4ee49f07f13b01d8888f848712e0cedd9
-
Size
608KB
-
Sample
211014-hwfyysgdf3
-
MD5
7c75742428dd7d9da00567dcb444a63c
-
SHA1
d17235fcba8d8e74aa8dc26214fe3d82253328a8
-
SHA256
9c26c49ad09c11b3e0ed5f892137a4c4ee49f07f13b01d8888f848712e0cedd9
-
SHA512
d31d90ed6878ad273abf18318946ceb787d68cfb8cb642bd2ebfd5c0028c33cf044e82cd978094878175865fc78a7c640911d995287fbffceb6d35058aa0340c
Static task
static1
Malware Config
Extracted
dridex
10444
174.128.245.202:443
51.83.3.52:13786
69.64.50.41:6602
Targets
-
-
Target
9c26c49ad09c11b3e0ed5f892137a4c4ee49f07f13b01d8888f848712e0cedd9
-
Size
608KB
-
MD5
7c75742428dd7d9da00567dcb444a63c
-
SHA1
d17235fcba8d8e74aa8dc26214fe3d82253328a8
-
SHA256
9c26c49ad09c11b3e0ed5f892137a4c4ee49f07f13b01d8888f848712e0cedd9
-
SHA512
d31d90ed6878ad273abf18318946ceb787d68cfb8cb642bd2ebfd5c0028c33cf044e82cd978094878175865fc78a7c640911d995287fbffceb6d35058aa0340c
-
Blocklisted process makes network request
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-