General
-
Target
3073c856f235a29bc9be154bdeb38bbc
-
Size
750KB
-
Sample
211027-t5rbtsfga3
-
MD5
3073c856f235a29bc9be154bdeb38bbc
-
SHA1
dc4d96a2f5387622a8d8f944fa9fe4377285e00a
-
SHA256
305aec94220c1ab1b0458e3591f9c05a2bcd0029a9699db8749d8c3bcf5abc36
-
SHA512
e2012f6feb2e08370ba2b9ea699ce7fa3a0a07bf4c912d7a6a32a30a54c709426e43806a77a9fc342050bd6c5eced2e71c8d203c9bbcedd1758b5cbe48697c15
Static task
static1
Behavioral task
behavioral1
Sample
3073c856f235a29bc9be154bdeb38bbc.dll
Resource
win7-en-20211014
Malware Config
Extracted
dridex
10555
192.46.210.220:443
143.244.140.214:808
45.77.0.96:6891
185.56.219.47:8116
Targets
-
-
Target
3073c856f235a29bc9be154bdeb38bbc
-
Size
750KB
-
MD5
3073c856f235a29bc9be154bdeb38bbc
-
SHA1
dc4d96a2f5387622a8d8f944fa9fe4377285e00a
-
SHA256
305aec94220c1ab1b0458e3591f9c05a2bcd0029a9699db8749d8c3bcf5abc36
-
SHA512
e2012f6feb2e08370ba2b9ea699ce7fa3a0a07bf4c912d7a6a32a30a54c709426e43806a77a9fc342050bd6c5eced2e71c8d203c9bbcedd1758b5cbe48697c15
-
Blocklisted process makes network request
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-