Overview

overview

10

Static

static

25211331af...a1.exe

windows7_x64

10

25211331af...a1.exe

windows10-2004_x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    25211331af23100e2c90643d9f73cf85a2ce830f10ebc0878c83a3195e7d58a1

  • Size

    292KB

  • Sample

    220611-yth9aseefl

  • MD5

    2bdade0a5e081d53d4df491da8c86618

  • SHA1

    3ee31f1e7756ed2215e08f5626cf6ee6223bc239

  • SHA256

    25211331af23100e2c90643d9f73cf85a2ce830f10ebc0878c83a3195e7d58a1

  • SHA512

    b7b699212f609ccbc74fc409cc822d79af893b892064e0e541b45d94e7c7ad05a624923e67d32c3fabf9dc7c74724a5a37fc833e536bacd84b3fe2e9361e123c

Score
10/10
dridexbotnetloader

Malware Config

Extracted

Family

dridex

C2

138.197.76.168:443

5.133.242.156:170

5.39.91.110:691

85.234.143.94:170

Targets

    • Target

      25211331af23100e2c90643d9f73cf85a2ce830f10ebc0878c83a3195e7d58a1

    • Size

      292KB

    • MD5

      2bdade0a5e081d53d4df491da8c86618

    • SHA1

      3ee31f1e7756ed2215e08f5626cf6ee6223bc239

    • SHA256

      25211331af23100e2c90643d9f73cf85a2ce830f10ebc0878c83a3195e7d58a1

    • SHA512

      b7b699212f609ccbc74fc409cc822d79af893b892064e0e541b45d94e7c7ad05a624923e67d32c3fabf9dc7c74724a5a37fc833e536bacd84b3fe2e9361e123c

    Score
    10/10
    dridexbotnetloader

    • Dridex

      Dridex(known as Bugat/Cridex) is a form of malware that specializes in stealing bank credentials.

      botnetdridex

    • Dridex Loader

      Detects Dridex both x86 and x64 loader in memory.

      botnetloader
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks