dridex | 65edcfa02ed54445bd9a4efa1586cee02712271155b669cffb3db35c5a252097 | Triage

Submit
Reports

Overview

overview

Static

static

65edcfa02e...97.exe

windows7_x64

65edcfa02e...97.exe

windows10-2004_x64

Sharing

General

Target

65edcfa02ed54445bd9a4efa1586cee02712271155b669cffb3db35c5a252097
Size

432KB
Sample

220508-hfpadscfak
MD5

635146e05f126794d8518e34d7b743e1
SHA1

8e5e4a581672a3bd8b7b0a336dfeffee48afc550
SHA256

65edcfa02ed54445bd9a4efa1586cee02712271155b669cffb3db35c5a252097
SHA512

3cfb0e7f8b073d02d499d3193aafdb9ae33c1131d0175d9257d162c756a78b2cb0195beccde6ae963834e0ed40aa3c7a1606d6fae485f85d5f46fe9870cdd717

Score

10^/10

dridex 10111 botnet loader

Static task

static1

Behavioral task

behavioral1

Sample

65edcfa02ed54445bd9a4efa1586cee02712271155b669cffb3db35c5a252097.exe

Resource

win7-20220414-en

dridex 10111 botnet loader

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

65edcfa02ed54445bd9a4efa1586cee02712271155b669cffb3db35c5a252097.exe

Resource

win10v2004-20220414-en

dridex 10111 botnet loader

windows10-2004_x64

0 signatures

0 seconds

Malware Config

Extracted

Family

dridex

Botnet

10111

C2

5.9.178.143:443

185.230.161.62:3389

2.58.16.89:8443

rc4.plain

rc4.plain

Targets

- Target
  
  65edcfa02ed54445bd9a4efa1586cee02712271155b669cffb3db35c5a252097
- Size
  
  432KB
- MD5
  
  635146e05f126794d8518e34d7b743e1
- SHA1
  
  8e5e4a581672a3bd8b7b0a336dfeffee48afc550
- SHA256
  
  65edcfa02ed54445bd9a4efa1586cee02712271155b669cffb3db35c5a252097
- SHA512
  
  3cfb0e7f8b073d02d499d3193aafdb9ae33c1131d0175d9257d162c756a78b2cb0195beccde6ae963834e0ed40aa3c7a1606d6fae485f85d5f46fe9870cdd717
Score

10^/10

dridex 10111 botnet loader
- Dridex
  Dridex(known as Bugat/Cridex) is a form of malware that specializes in stealing bank credentials.
  botnet dridex
- Dridex Loader 'dmod' strings
  Detects 'dmod' strings in Dridex loader.
  botnet loader
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

dridex10111botnetloader

behavioral2

dridex10111botnetloader

© 2018-2024

Terms | Privacy