General
-
Target
2980030803fd28c4b6853ac409913169
-
Size
750KB
-
Sample
211027-vskh7afgf5
-
MD5
2980030803fd28c4b6853ac409913169
-
SHA1
bdf5d8880fac10050953d2cac23192bf51ef2b1c
-
SHA256
ee7fb2c80d221dff02db8416bcd2b09c4ec50eb15fa626afe02c7a311243ae05
-
SHA512
a3619ca66ecb89e02ed23d982dc46df72fae4fdbbde33beb5b58eee5b6f8124e190d5b1a2460d29e37d72049de62b3d0f04ea95181414f02bcdc3060dd8ce87f
Static task
static1
Behavioral task
behavioral1
Sample
2980030803fd28c4b6853ac409913169.dll
Resource
win7-en-20211014
Malware Config
Extracted
dridex
10555
192.46.210.220:443
143.244.140.214:808
45.77.0.96:6891
185.56.219.47:8116
Targets
-
-
Target
2980030803fd28c4b6853ac409913169
-
Size
750KB
-
MD5
2980030803fd28c4b6853ac409913169
-
SHA1
bdf5d8880fac10050953d2cac23192bf51ef2b1c
-
SHA256
ee7fb2c80d221dff02db8416bcd2b09c4ec50eb15fa626afe02c7a311243ae05
-
SHA512
a3619ca66ecb89e02ed23d982dc46df72fae4fdbbde33beb5b58eee5b6f8124e190d5b1a2460d29e37d72049de62b3d0f04ea95181414f02bcdc3060dd8ce87f
-
Blocklisted process makes network request
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-