General
-
Target
fecffc9d68acb1533c122b3f69893c51052a886ef0e635e39e90b6261ba35c87
-
Size
625KB
-
Sample
220417-t3dmysahek
-
MD5
d4c64af19fb8906dab8902151f18107b
-
SHA1
10c12fd0c432d1a15522580cd8003b182be13a33
-
SHA256
fecffc9d68acb1533c122b3f69893c51052a886ef0e635e39e90b6261ba35c87
-
SHA512
0202a471d0ece96f6c7ef1e81e1e97244fe3306b7420c5978dca729a50119d7817137179aa193c662d1c6fbfb14d50cac3a8d0202112c74735d5d5752a1597a5
Malware Config
Targets
-
-
Target
fecffc9d68acb1533c122b3f69893c51052a886ef0e635e39e90b6261ba35c87
-
Size
625KB
-
MD5
d4c64af19fb8906dab8902151f18107b
-
SHA1
10c12fd0c432d1a15522580cd8003b182be13a33
-
SHA256
fecffc9d68acb1533c122b3f69893c51052a886ef0e635e39e90b6261ba35c87
-
SHA512
0202a471d0ece96f6c7ef1e81e1e97244fe3306b7420c5978dca729a50119d7817137179aa193c662d1c6fbfb14d50cac3a8d0202112c74735d5d5752a1597a5
Score10/10-
Dridex
Dridex(known as Bugat/Cridex) is a form of malware that specializes in stealing bank credentials.
-
Dridex Payload
Detects Dridex x64 core DLL in memory.
-
Dridex Shellcode
Detects Dridex Payload shellcode injected in Explorer process.
-
Modifies Installed Components in the registry
-
Checks whether UAC is enabled
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-