e3a97ee2fa0ea4dc05340e0778674a93e8c95944c519df7ee5f486c08b1df15a.dll

Tags

Signatures

• Dridex

  Description

  Dridex(known as Bugat/Cridex) is a form of malware that specializes in stealing bank credentials.

  Tags

  botnetdridex

• Dridex Shellcode

  Description

  Detects Dridex Payload shellcode injected in Explorer process.

  Tags

  botnetpayload

• Executes dropped EXE

• Drops startup file

• Loads dropped DLL

• Adds Run key to start application

  Tags

  persistence

  TTPs

  Registry Run Keys / Startup FolderModify Registry

• Checks whether UAC is enabled

  Tags

  evasiontrojan

  TTPs

  System Information Discovery

Related Tasks