dridex | 1999fb25e7db0ed2dd684a5e2cf2cf2c31c7902f2fe0d004ddbc875c4d5ed396 | Triage

Submit
Reports

Overview

overview

Static

static

1999fb25e7...96.exe

windows7_x64

1999fb25e7...96.exe

windows10-2004_x64

Sharing

General

Target

1999fb25e7db0ed2dd684a5e2cf2cf2c31c7902f2fe0d004ddbc875c4d5ed396
Size

398KB
Sample

220608-gq4x6acecm
MD5

590c8e3fe01165c92818941656444229
SHA1

4af1b4a1e36f18d89646f918d965dfe815bfd16e
SHA256

1999fb25e7db0ed2dd684a5e2cf2cf2c31c7902f2fe0d004ddbc875c4d5ed396
SHA512

3283d373b61dc219f6c0c644566547db89aa2eb50c200b4c64f7df687d379d16f10520df6598bdea466bb01fc89dd515e833d77d3b796f6902755e3055ab322f

Score

10^/10

dridex botnet loader

Static task

static1

Behavioral task

behavioral1

Sample

1999fb25e7db0ed2dd684a5e2cf2cf2c31c7902f2fe0d004ddbc875c4d5ed396.exe

Resource

win7-20220414-en

dridex botnet loader

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

1999fb25e7db0ed2dd684a5e2cf2cf2c31c7902f2fe0d004ddbc875c4d5ed396.exe

Resource

win10v2004-20220414-en

dridex botnet loader

windows10-2004_x64

0 signatures

0 seconds

Malware Config

Extracted

Family

dridex

C2

136.243.32.231:443

64.22.124.239:691

138.197.76.168:443

Targets

- Target
  
  1999fb25e7db0ed2dd684a5e2cf2cf2c31c7902f2fe0d004ddbc875c4d5ed396
- Size
  
  398KB
- MD5
  
  590c8e3fe01165c92818941656444229
- SHA1
  
  4af1b4a1e36f18d89646f918d965dfe815bfd16e
- SHA256
  
  1999fb25e7db0ed2dd684a5e2cf2cf2c31c7902f2fe0d004ddbc875c4d5ed396
- SHA512
  
  3283d373b61dc219f6c0c644566547db89aa2eb50c200b4c64f7df687d379d16f10520df6598bdea466bb01fc89dd515e833d77d3b796f6902755e3055ab322f
Score

10^/10

dridex botnet loader
- Dridex
  Dridex(known as Bugat/Cridex) is a form of malware that specializes in stealing bank credentials.
  botnet dridex
- Dridex Loader
  Detects Dridex both x86 and x64 loader in memory.
  botnet loader
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

dridexbotnetloader

behavioral2

dridexbotnetloader

© 2018-2024

Terms | Privacy