General
-
Target
2eb65a8ce173d88e886f8333c300c92f
-
Size
750KB
-
Sample
211027-t5mzeahccn
-
MD5
2eb65a8ce173d88e886f8333c300c92f
-
SHA1
8e58167cab24be18c890420f8c5f3b77f21ce465
-
SHA256
260eb41d6b91067463a91d3adfe632e8a894c2a42fbb2c0b03b0860964c7bff8
-
SHA512
3396498de9270a223cfb7319b5d201aee38a5444c8b616e56ec1de6715d2e1f05a9a464452b204ddad9bc59380026e14346a8c60b03db347bc4a92dd01b81715
Static task
static1
Behavioral task
behavioral1
Sample
2eb65a8ce173d88e886f8333c300c92f.dll
Resource
win7-en-20210920
Malware Config
Extracted
dridex
10555
192.46.210.220:443
143.244.140.214:808
45.77.0.96:6891
185.56.219.47:8116
Targets
-
-
Target
2eb65a8ce173d88e886f8333c300c92f
-
Size
750KB
-
MD5
2eb65a8ce173d88e886f8333c300c92f
-
SHA1
8e58167cab24be18c890420f8c5f3b77f21ce465
-
SHA256
260eb41d6b91067463a91d3adfe632e8a894c2a42fbb2c0b03b0860964c7bff8
-
SHA512
3396498de9270a223cfb7319b5d201aee38a5444c8b616e56ec1de6715d2e1f05a9a464452b204ddad9bc59380026e14346a8c60b03db347bc4a92dd01b81715
-
Blocklisted process makes network request
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-