dridex | 9a28abb1d55dfef5eb71317b95445442f2c7b8e094e0480ecb8a0e0c13274934 | Triage

Submit
Reports

Overview

overview

Static

static

dridex

windows10_x64

Sharing

General

Target

9a28abb1d55dfef5eb71317b95445442f2c7b8e094e0480ecb8a0e0c13274934
Size

180KB
Sample

211021-y42tdsafg9
MD5

339008271ae6018ecaa401fb76bb1db0
SHA1

c78c07b6476897489c5c5c40fafa0c5657ff9d61
SHA256

9a28abb1d55dfef5eb71317b95445442f2c7b8e094e0480ecb8a0e0c13274934
SHA512

821f4354446c889d377b9b3c523f2be8ea3ddd6b1f4b6d9c161a5057847ed353d3a9298bdd0e14bcd7b1966a65078d2a7a639b0a9ac1b1c84ec0a4fa60456de3

Score

10^/10

dridex 22201 botnet loader

Static task

static1

Behavioral task

behavioral1

Sample

9a28abb1d55dfef5eb71317b95445442f2c7b8e094e0480ecb8a0e0c13274934.dll

Resource

win10-en-20211014

dridex 22201 botnet loader

windows10_x64

0 signatures

0 seconds

Malware Config

Extracted

Family

dridex

Botnet

22201

C2

212.237.17.99:443

176.28.17.160:6602

51.254.140.238:8333

rc4.plain

rc4.plain

Targets

- Target
  
  9a28abb1d55dfef5eb71317b95445442f2c7b8e094e0480ecb8a0e0c13274934
- Size
  
  180KB
- MD5
  
  339008271ae6018ecaa401fb76bb1db0
- SHA1
  
  c78c07b6476897489c5c5c40fafa0c5657ff9d61
- SHA256
  
  9a28abb1d55dfef5eb71317b95445442f2c7b8e094e0480ecb8a0e0c13274934
- SHA512
  
  821f4354446c889d377b9b3c523f2be8ea3ddd6b1f4b6d9c161a5057847ed353d3a9298bdd0e14bcd7b1966a65078d2a7a639b0a9ac1b1c84ec0a4fa60456de3
Score

10^/10

dridex 22201 botnet loader
- Dridex
  Dridex(known as Bugat/Cridex) is a form of malware that specializes in stealing bank credentials.
  botnet dridex
- Dridex Loader
  Detects Dridex both x86 and x64 loader in memory.
  botnet loader
behavioral1

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

dridex22201botnetloader

© 2018-2024

Terms | Privacy