dridex | f99d1236a1f56745c2fcee8e97b464595c2d8af5caeec99a95532de28f74d055 | Triage

Submit
Reports

Overview

overview

Static

static

tmp/f99d12...xe.dll

windows7_x64

3

tmp/f99d12...xe.dll

windows10_x64

3

Sharing

General

Target

tmp/f99d1236a1f56745c2fcee8e97b464595c2d8af5caeec99a95532de28f74d055.exe
Size

132KB
Sample

211227-k66y8scea6
MD5

1eabb6d464f7245f5a357600e5fbcdb2
SHA1

751c3e9c19fc62ead178f2554ef2c3965ff2b33f
SHA256

f99d1236a1f56745c2fcee8e97b464595c2d8af5caeec99a95532de28f74d055
SHA512

026cab0412480de005d4d0dd9177510a145b1658f2f3158bf91ab46d2cf303ebec553d4c4240b6e184891fc34c4987ea89f3856e68756e857a7fe8ec9fa1790c

Score

10^/10

dridex 22202 botnet loader

Static task

static1

botnet loader 22202 dridex

Behavioral task

behavioral1

Sample

tmp/f99d1236a1f56745c2fcee8e97b464595c2d8af5caeec99a95532de28f74d055.exe.dll

Resource

win7-en-20211208

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

tmp/f99d1236a1f56745c2fcee8e97b464595c2d8af5caeec99a95532de28f74d055.exe.dll

Resource

win10-en-20211208

windows10_x64

0 signatures

0 seconds

Malware Config

Extracted

Family

dridex

Botnet

22202

C2

185.122.58.89:443

136.144.131.189:808

50.116.109.66:8172

rc4.plain

rc4.plain

Targets

- Target
  
  tmp/f99d1236a1f56745c2fcee8e97b464595c2d8af5caeec99a95532de28f74d055.exe
- Size
  
  132KB
- MD5
  
  1eabb6d464f7245f5a357600e5fbcdb2
- SHA1
  
  751c3e9c19fc62ead178f2554ef2c3965ff2b33f
- SHA256
  
  f99d1236a1f56745c2fcee8e97b464595c2d8af5caeec99a95532de28f74d055
- SHA512
  
  026cab0412480de005d4d0dd9177510a145b1658f2f3158bf91ab46d2cf303ebec553d4c4240b6e184891fc34c4987ea89f3856e68756e857a7fe8ec9fa1790c
Score

3^/10
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

botnetloader22202dridex

behavioral1

behavioral2

© 2018-2024

Terms | Privacy