dridex | 8321ba3134a0517c02ddf3b26163afa155aeb6aa606a2825618671372679c4a2 | Triage

Submit
Reports

Overview

overview

Static

static

dridex

windows10_x64

Sharing

General

Target

8321ba3134a0517c02ddf3b26163afa155aeb6aa606a2825618671372679c4a2
Size

180KB
Sample

211018-x2n9vaedd3
MD5

d08861f67ff78ce290400918bef9d6d3
SHA1

84fa96bab75c39763e98cae598d66bc2e0372cc5
SHA256

8321ba3134a0517c02ddf3b26163afa155aeb6aa606a2825618671372679c4a2
SHA512

e502f2e8ed1c45a1de6d8a9fb3f610cf97adf71f2504284bbccd42dd436e08d483536ac031e022526c951a21b7521322cc5f78863e1cea40003e5c4b8c912bd5

Score

10^/10

dridex 22203 botnet loader

Static task

static1

Behavioral task

behavioral1

Sample

8321ba3134a0517c02ddf3b26163afa155aeb6aa606a2825618671372679c4a2.dll

Resource

win10-en-20211014

dridex 22203 botnet loader

windows10_x64

0 signatures

0 seconds

Malware Config

Extracted

Family

dridex

Botnet

22203

C2

195.154.146.84:443

45.56.121.87:8116

157.245.222.44:5723

rc4.plain

rc4.plain

Targets

- Target
  
  8321ba3134a0517c02ddf3b26163afa155aeb6aa606a2825618671372679c4a2
- Size
  
  180KB
- MD5
  
  d08861f67ff78ce290400918bef9d6d3
- SHA1
  
  84fa96bab75c39763e98cae598d66bc2e0372cc5
- SHA256
  
  8321ba3134a0517c02ddf3b26163afa155aeb6aa606a2825618671372679c4a2
- SHA512
  
  e502f2e8ed1c45a1de6d8a9fb3f610cf97adf71f2504284bbccd42dd436e08d483536ac031e022526c951a21b7521322cc5f78863e1cea40003e5c4b8c912bd5
Score

10^/10

dridex 22203 botnet loader
- Dridex
  Dridex(known as Bugat/Cridex) is a form of malware that specializes in stealing bank credentials.
  botnet dridex
- Dridex Loader
  Detects Dridex both x86 and x64 loader in memory.
  botnet loader
behavioral1

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

dridex22203botnetloader

© 2018-2024

Terms | Privacy