dridex | 1286fa28f0bcc0f3b540ef7b93b285d8ebd4f57ff8abf75637b4dd0c98247e1d | Triage

Sharing

General

Target

1286fa28f0bcc0f3b540ef7b93b285d8ebd4f57ff8abf75637b4dd0c98247e1d
Size

204KB
Sample

220603-snj1raehgj
MD5

2ec58c115052204d988073f7a72c7bec
SHA1

8c9815cc3b896fbde8fdecdcb43169d7a7922876
SHA256

1286fa28f0bcc0f3b540ef7b93b285d8ebd4f57ff8abf75637b4dd0c98247e1d
SHA512

3ce92ff49ea64b2e9fb9f951959e4f5ba4949c500ee318029f9897e10c68766b1d12fc406d7c9572a39ec9a1e7216d20de471b36c53ab2711ffcfb6d8ac49182

Score

10^/10

dridex botnet

Malware Config

Extracted

Family

dridex

C2

5.196.15.119:443

46.105.131.72:443

157.7.163.144:3389

199.119.78.9:4143

Targets

- Target
  
  1286fa28f0bcc0f3b540ef7b93b285d8ebd4f57ff8abf75637b4dd0c98247e1d
- Size
  
  204KB
- MD5
  
  2ec58c115052204d988073f7a72c7bec
- SHA1
  
  8c9815cc3b896fbde8fdecdcb43169d7a7922876
- SHA256
  
  1286fa28f0bcc0f3b540ef7b93b285d8ebd4f57ff8abf75637b4dd0c98247e1d
- SHA512
  
  3ce92ff49ea64b2e9fb9f951959e4f5ba4949c500ee318029f9897e10c68766b1d12fc406d7c9572a39ec9a1e7216d20de471b36c53ab2711ffcfb6d8ac49182
Score

10^/10

dridex botnet
- Dridex
  Dridex(known as Bugat/Cridex) is a form of malware that specializes in stealing bank credentials.
  botnet dridex
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2