Overview

overview

10

Static

static

SecuriteIn...66.dll

windows7_x64

10

SecuriteIn...66.dll

windows10_x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    SecuriteInfo.com.W32.AIDetect.malware1.19988.15866

  • Size

    468KB

  • Sample

    211220-3at9nscgep

  • MD5

    eb72af61199b77c1ef42f61b43c28abf

  • SHA1

    771925b37acbab76dfb973f24a0b08bc8c224fb3

  • SHA256

    649b719b3ee467ea1a1c824cfc5db7a1eae33b05b9182ee4190541d32bf96b8d

  • SHA512

    49b49e506b63d918fe077b4c620be9eca20b940db74f8527511f8b0863fa6326084fc2772d21982e4f52a9a6efcdd5503bd9f247a631fe615c7e2abc5dc3310a

Score
10/10
dridex22206botnetloader

Malware Config

Extracted

Family

dridex

Botnet

22206

C2

120.50.40.185:443

139.59.14.223:8172

121.40.104.209:6602

139.162.113.169:593
rc4.plain
rc4.plain

Targets

    • Target

      SecuriteInfo.com.W32.AIDetect.malware1.19988.15866

    • Size

      468KB

    • MD5

      eb72af61199b77c1ef42f61b43c28abf

    • SHA1

      771925b37acbab76dfb973f24a0b08bc8c224fb3

    • SHA256

      649b719b3ee467ea1a1c824cfc5db7a1eae33b05b9182ee4190541d32bf96b8d

    • SHA512

      49b49e506b63d918fe077b4c620be9eca20b940db74f8527511f8b0863fa6326084fc2772d21982e4f52a9a6efcdd5503bd9f247a631fe615c7e2abc5dc3310a

    Score
    10/10
    dridex22206botnetloader

    • Dridex

      Dridex(known as Bugat/Cridex) is a form of malware that specializes in stealing bank credentials.

      botnetdridex

    • Dridex Loader

      Detects Dridex both x86 and x64 loader in memory.

      botnetloader
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks