dridex | 135b84d148c481ec5284c79c20011125fe3fc1df311f1e30861e0b014893aec4 | Triage

Submit
Reports

Overview

overview

Static

static

135b84d148...c4.exe

windows7_x64

135b84d148...c4.exe

windows10-2004_x64

Sharing

General

Target

135b84d148c481ec5284c79c20011125fe3fc1df311f1e30861e0b014893aec4
Size

389KB
Sample

220603-g7499affbm
MD5

53b4636562f66648184e0c871bc4f4ed
SHA1

766fc1c76018df0ab19b13a545356dd505a8585d
SHA256

135b84d148c481ec5284c79c20011125fe3fc1df311f1e30861e0b014893aec4
SHA512

3beef5b04cd70b28ce76ee030dcc45e3a0f1462283fd26c46f0a6a9a7875f28d29b1a4cdc43cd93319904e3c98ba1b23c3b5cdb0d992eaf47c5263d7350239b8

Score

10^/10

dridex botnet loader

Static task

static1

Behavioral task

behavioral1

Sample

135b84d148c481ec5284c79c20011125fe3fc1df311f1e30861e0b014893aec4.exe

Resource

win7-20220414-en

dridex botnet loader

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

135b84d148c481ec5284c79c20011125fe3fc1df311f1e30861e0b014893aec4.exe

Resource

win10v2004-20220414-en

dridex botnet loader

windows10-2004_x64

0 signatures

0 seconds

Malware Config

Extracted

Family

dridex

C2

136.243.32.231:443

64.22.124.239:691

138.197.76.168:443

Targets

- Target
  
  135b84d148c481ec5284c79c20011125fe3fc1df311f1e30861e0b014893aec4
- Size
  
  389KB
- MD5
  
  53b4636562f66648184e0c871bc4f4ed
- SHA1
  
  766fc1c76018df0ab19b13a545356dd505a8585d
- SHA256
  
  135b84d148c481ec5284c79c20011125fe3fc1df311f1e30861e0b014893aec4
- SHA512
  
  3beef5b04cd70b28ce76ee030dcc45e3a0f1462283fd26c46f0a6a9a7875f28d29b1a4cdc43cd93319904e3c98ba1b23c3b5cdb0d992eaf47c5263d7350239b8
Score

10^/10

dridex botnet loader
- Dridex
  Dridex(known as Bugat/Cridex) is a form of malware that specializes in stealing bank credentials.
  botnet dridex
- Dridex Loader
  Detects Dridex both x86 and x64 loader in memory.
  botnet loader
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

dridexbotnetloader

behavioral2

dridexbotnetloader

© 2018-2024

Terms | Privacy