dridex | 8a1390936196c12c6be12321b71e4c737d8cd8a7d02a976a898524a9d6c9918b | Triage

Sharing

General

Target

8a1390936196c12c6be12321b71e4c737d8cd8a7d02a976a898524a9d6c9918b
Size

196KB
Sample

220524-16hjmshgh3
MD5

fb747d2c28d374d401152f97e6591d54
SHA1

9e3c784f984ac72158d58887312cfe4a2193218b
SHA256

8a1390936196c12c6be12321b71e4c737d8cd8a7d02a976a898524a9d6c9918b
SHA512

cccb245cac9ba3173d5a050a25909ee5ddbad54862499d662ddc5ff3c19df85ba0341a1760ff26234b91b3d45e0297c45ea9424c6bdefee3019609ce01ee1c24

Score

10^/10

dridex 40400 botnet

Malware Config

Extracted

Family

dridex

Botnet

40400

C2

51.15.7.145:443

198.27.69.201:4643

198.20.228.10:3389

192.99.41.136:981

rc4.plain

rc4.plain

Targets

- Target
  
  8a1390936196c12c6be12321b71e4c737d8cd8a7d02a976a898524a9d6c9918b
- Size
  
  196KB
- MD5
  
  fb747d2c28d374d401152f97e6591d54
- SHA1
  
  9e3c784f984ac72158d58887312cfe4a2193218b
- SHA256
  
  8a1390936196c12c6be12321b71e4c737d8cd8a7d02a976a898524a9d6c9918b
- SHA512
  
  cccb245cac9ba3173d5a050a25909ee5ddbad54862499d662ddc5ff3c19df85ba0341a1760ff26234b91b3d45e0297c45ea9424c6bdefee3019609ce01ee1c24
Score

10^/10

dridex 40400 botnet
- Dridex
  Dridex(known as Bugat/Cridex) is a form of malware that specializes in stealing bank credentials.
  botnet dridex
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

dridex40400botnet

behavioral2

dridex40400botnet