General
-
Target
68681415a776cc885eedfeb2999b49c561e2dbc93b144a8eaefaa19a17f3c3b0
-
Size
664KB
-
Sample
211014-r9tawaafep
-
MD5
eca6385623a6a20df205cf22de99372c
-
SHA1
03d0767e3bd278d2144a63c8a2e6cc27b93e5777
-
SHA256
68681415a776cc885eedfeb2999b49c561e2dbc93b144a8eaefaa19a17f3c3b0
-
SHA512
350ddc52ca862d58f2c17b0b89dde2be5cde8e437bb6e08f6a0681d576665d047cde1d660b05ec5330f4887f5e3959868dd2e699956b22b428b04915e6e7f507
Static task
static1
Malware Config
Extracted
dridex
10222
174.128.245.202:443
51.83.3.52:13786
69.64.50.41:6602
Targets
-
-
Target
68681415a776cc885eedfeb2999b49c561e2dbc93b144a8eaefaa19a17f3c3b0
-
Size
664KB
-
MD5
eca6385623a6a20df205cf22de99372c
-
SHA1
03d0767e3bd278d2144a63c8a2e6cc27b93e5777
-
SHA256
68681415a776cc885eedfeb2999b49c561e2dbc93b144a8eaefaa19a17f3c3b0
-
SHA512
350ddc52ca862d58f2c17b0b89dde2be5cde8e437bb6e08f6a0681d576665d047cde1d660b05ec5330f4887f5e3959868dd2e699956b22b428b04915e6e7f507
-
Blocklisted process makes network request
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-