General
-
Target
lfi9iu.rar
-
Size
1.0MB
-
Sample
220611-t9tyhsgdap
-
MD5
9608afd8262fd7f603022db2a06cbbd9
-
SHA1
4b51ee7c73ad8948b723e3aa1fa7f8cdff589696
-
SHA256
75fbbdddcf81b5185236fd620156025c65e1f696f5fe9d78e60da54762b32e3e
-
SHA512
4b17c2bac11d9a416d5e0cf99e0ae2b44496598207d8c7e6419f54f6176c7ecb9027a8342a78571d7a3170bc46e015fac97e9b78c52b74ecf3aeca88a28ed6cd
Static task
static1
Behavioral task
behavioral1
Sample
lfi9iu.dll
Resource
win7-20220414-en
Malware Config
Extracted
dridex
10444
192.46.210.220:443
143.244.140.214:808
45.77.0.96:6891
185.56.219.47:8116
Targets
-
-
Target
lfi9iu.rar
-
Size
1.0MB
-
MD5
9608afd8262fd7f603022db2a06cbbd9
-
SHA1
4b51ee7c73ad8948b723e3aa1fa7f8cdff589696
-
SHA256
75fbbdddcf81b5185236fd620156025c65e1f696f5fe9d78e60da54762b32e3e
-
SHA512
4b17c2bac11d9a416d5e0cf99e0ae2b44496598207d8c7e6419f54f6176c7ecb9027a8342a78571d7a3170bc46e015fac97e9b78c52b74ecf3aeca88a28ed6cd
-
Blocklisted process makes network request
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-