General
-
Target
xnma.exe
-
Size
272KB
-
Sample
211020-s8amtahcc7
-
MD5
a6a1cd721b167906fc93aaed78b9e269
-
SHA1
26b3044bf37d97dd73b7f8a50aa96a45b03db561
-
SHA256
48bcae0537f84736120735b1c6da0d8f3d8c2a1b959f0f50f5fa34b1e317401f
-
SHA512
ea61285736545f50dffd31ffd51d6cb870f2cc737ec82628e0f51e2bc02ef33b967e4c48296fee5ffc7e89c2f9fa7f7b9fad92a30683cfc8edf039491adc46aa
Static task
static1
Malware Config
Extracted
dridex
46.105.131.86:443
5.39.91.110:691
5.133.242.156:170
64.22.124.239:691
Targets
-
-
Target
xnma.exe
-
Size
272KB
-
MD5
a6a1cd721b167906fc93aaed78b9e269
-
SHA1
26b3044bf37d97dd73b7f8a50aa96a45b03db561
-
SHA256
48bcae0537f84736120735b1c6da0d8f3d8c2a1b959f0f50f5fa34b1e317401f
-
SHA512
ea61285736545f50dffd31ffd51d6cb870f2cc737ec82628e0f51e2bc02ef33b967e4c48296fee5ffc7e89c2f9fa7f7b9fad92a30683cfc8edf039491adc46aa
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-