dridex | 3438f9b0aa8dd678205f1ed5858ec99f78da5458c64e9a3b895ca44aea335c3c | Triage

Submit
Reports

Overview

overview

Static

static

3438f9b0aa...3c.exe

windows7_x64

1

3438f9b0aa...3c.exe

windows10-2004_x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

3438f9b0aa8dd678205f1ed5858ec99f78da5458c64e9a3b895ca44aea335c3c.exe

Resource

win7-20220414-en

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

3438f9b0aa8dd678205f1ed5858ec99f78da5458c64e9a3b895ca44aea335c3c.exe

Resource

win10v2004-20220414-en

windows10-2004_x64

0 signatures

0 seconds

General

Target

3438f9b0aa8dd678205f1ed5858ec99f78da5458c64e9a3b895ca44aea335c3c
Size

87KB
MD5

16dc7937c15638d82045233eadb258fb
SHA1

3d3b1fc718a5d39b1b814d6344cce14c8107852f
SHA256

3438f9b0aa8dd678205f1ed5858ec99f78da5458c64e9a3b895ca44aea335c3c
SHA512

30709afb15c550b26653d1a25aaf634eda4b8d584309e3fbfed59cb7da994249a6102f757fcda13435ea55222069599b2da9a0c0beec60518c612b7816f38ca6
SSDEEP

1536:eM1784w7gYBMnH01ZO0XLmrwCRevyiOMIQR4Gr/JoGSOdjYwF7fbQ12KTSk60n56:eM1784w7gYBMnUPOmIxRevyiXIQWGzJ2

Score

10^/10

dridex

Malware Config

Extracted

Family

dridex

C2

46.105.131.67:443

67.207.148.158:443

184.106.153.73:443

208.78.100.202:1801

Signatures

Dridex family
dridex

Files

3438f9b0aa8dd678205f1ed5858ec99f78da5458c64e9a3b895ca44aea335c3c
.exe windows x86

21626130d9d56e7fc3c160241339a20d

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

OutputDebugStringW
Sleep

Sections

.text
Size: 74KB - Virtual size: 73KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 228B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 528B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy