General
-
Target
c55dd702da86e6d85e4829831aee6a9e
-
Size
750KB
-
Sample
211027-v848jafhe7
-
MD5
c55dd702da86e6d85e4829831aee6a9e
-
SHA1
4a9d4f9564c54d8a82da45a963ec71dc8644cd3b
-
SHA256
e945693ff948a0e175152f72eb1ef3111b08ca2163c1ebfecd9d3f084a0c3210
-
SHA512
ed41547cbed01955f4b2532511fcd4bcefa60304bd0dd6f4cc3b2e85443377e4ba17247a880d4f6db3179541558d8391ac9421d67d29ac2df3f0951ce55efaab
Static task
static1
Behavioral task
behavioral1
Sample
c55dd702da86e6d85e4829831aee6a9e.dll
Resource
win7-en-20211014
Malware Config
Extracted
dridex
10555
192.46.210.220:443
143.244.140.214:808
45.77.0.96:6891
185.56.219.47:8116
Targets
-
-
Target
c55dd702da86e6d85e4829831aee6a9e
-
Size
750KB
-
MD5
c55dd702da86e6d85e4829831aee6a9e
-
SHA1
4a9d4f9564c54d8a82da45a963ec71dc8644cd3b
-
SHA256
e945693ff948a0e175152f72eb1ef3111b08ca2163c1ebfecd9d3f084a0c3210
-
SHA512
ed41547cbed01955f4b2532511fcd4bcefa60304bd0dd6f4cc3b2e85443377e4ba17247a880d4f6db3179541558d8391ac9421d67d29ac2df3f0951ce55efaab
-
Blocklisted process makes network request
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-