General
-
Target
e85667d75aca8dba4156b3097c4239fef5b7fff73bae326e14776635b90bbf15
-
Size
1.2MB
-
Sample
220417-t3fsbadgc8
-
MD5
d43877733bf1f6c2edf73959a8d46d1d
-
SHA1
f6bb41026e12e62344f37f12b92825145662918c
-
SHA256
e85667d75aca8dba4156b3097c4239fef5b7fff73bae326e14776635b90bbf15
-
SHA512
25c9c65b9064c30002600a66be364fe0af08351e3f947248748ec5dcb67e5999cceb66166fd3114e3ec61b82d6e9e1ca4bc1b2e52c3b35fd32664314e15125b4
Malware Config
Targets
-
-
Target
e85667d75aca8dba4156b3097c4239fef5b7fff73bae326e14776635b90bbf15
-
Size
1.2MB
-
MD5
d43877733bf1f6c2edf73959a8d46d1d
-
SHA1
f6bb41026e12e62344f37f12b92825145662918c
-
SHA256
e85667d75aca8dba4156b3097c4239fef5b7fff73bae326e14776635b90bbf15
-
SHA512
25c9c65b9064c30002600a66be364fe0af08351e3f947248748ec5dcb67e5999cceb66166fd3114e3ec61b82d6e9e1ca4bc1b2e52c3b35fd32664314e15125b4
Score10/10-
Dridex
Dridex(known as Bugat/Cridex) is a form of malware that specializes in stealing bank credentials.
-
Dridex Shellcode
Detects Dridex Payload shellcode injected in Explorer process.
-
Modifies Installed Components in the registry
-
Checks whether UAC is enabled
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-