dridex | 785e2c64df60a62ed86ff7fd8247b0fdfb32ab8a96fbfbc2fc0e4a52cfb4dce7 | Triage

Submit
Reports

Overview

overview

Static

static

dridex

windows10_x64

Sharing

General

Target

785e2c64df60a62ed86ff7fd8247b0fdfb32ab8a96fbfbc2fc0e4a52cfb4dce7
Size

552KB
Sample

211224-ct8naschdn
MD5

3c4a6403181fab440274a016b6421693
SHA1

61d44992088d9f2b8dceb8cb18ebb71d481a7312
SHA256

785e2c64df60a62ed86ff7fd8247b0fdfb32ab8a96fbfbc2fc0e4a52cfb4dce7
SHA512

764fc799f92dbb4fa2ec976bee27c4e9d8224a8a421604fa167d50e0e6ba17755a3ffafc9063af035b9dc1eca379eb4f2fd08ea4a8ab34ad8aff8ec03e6ce5e0

Score

10^/10

dridex 22201 botnet loader

Static task

static1

Behavioral task

behavioral1

Sample

785e2c64df60a62ed86ff7fd8247b0fdfb32ab8a96fbfbc2fc0e4a52cfb4dce7.dll

Resource

win10-en-20211208

dridex 22201 botnet loader

windows10_x64

0 signatures

0 seconds

Malware Config

Extracted

Family

dridex

Botnet

22201

C2

144.91.122.102:443

85.10.248.28:593

185.4.135.27:5228

80.211.3.13:8116

rc4.plain

rc4.plain

Targets

- Target
  
  785e2c64df60a62ed86ff7fd8247b0fdfb32ab8a96fbfbc2fc0e4a52cfb4dce7
- Size
  
  552KB
- MD5
  
  3c4a6403181fab440274a016b6421693
- SHA1
  
  61d44992088d9f2b8dceb8cb18ebb71d481a7312
- SHA256
  
  785e2c64df60a62ed86ff7fd8247b0fdfb32ab8a96fbfbc2fc0e4a52cfb4dce7
- SHA512
  
  764fc799f92dbb4fa2ec976bee27c4e9d8224a8a421604fa167d50e0e6ba17755a3ffafc9063af035b9dc1eca379eb4f2fd08ea4a8ab34ad8aff8ec03e6ce5e0
Score

10^/10

dridex 22201 botnet loader
- Dridex
  Dridex(known as Bugat/Cridex) is a form of malware that specializes in stealing bank credentials.
  botnet dridex
- Dridex Loader
  Detects Dridex both x86 and x64 loader in memory.
  botnet loader
behavioral1

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

dridex22201botnetloader

© 2018-2024

Terms | Privacy