General
-
Target
d61a3625e48b64d363dd0285df0b62ceff9447ab6ed4db4699408486ec96fb7b
-
Size
693KB
-
Sample
220417-t3jh7sahep
-
MD5
128568f4bf11bb59f95e87f5057f1987
-
SHA1
5099331e75b4a77cfe1cd00da93f7ceb21cebfcf
-
SHA256
d61a3625e48b64d363dd0285df0b62ceff9447ab6ed4db4699408486ec96fb7b
-
SHA512
1ace10e8851bcae7ba8347c14016fe6b198d2e30aa399f919e5cdb1aceba2e3fd70dad3cd5b19f08ad97d5d7986668b884808a890607916d7ff31acb02ad86d8
Malware Config
Targets
-
-
Target
d61a3625e48b64d363dd0285df0b62ceff9447ab6ed4db4699408486ec96fb7b
-
Size
693KB
-
MD5
128568f4bf11bb59f95e87f5057f1987
-
SHA1
5099331e75b4a77cfe1cd00da93f7ceb21cebfcf
-
SHA256
d61a3625e48b64d363dd0285df0b62ceff9447ab6ed4db4699408486ec96fb7b
-
SHA512
1ace10e8851bcae7ba8347c14016fe6b198d2e30aa399f919e5cdb1aceba2e3fd70dad3cd5b19f08ad97d5d7986668b884808a890607916d7ff31acb02ad86d8
Score10/10-
Dridex
Dridex(known as Bugat/Cridex) is a form of malware that specializes in stealing bank credentials.
-
Dridex Payload
Detects Dridex x64 core DLL in memory.
-
Dridex Shellcode
Detects Dridex Payload shellcode injected in Explorer process.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
Checks whether UAC is enabled
-