Analysis
-
max time kernel
132s -
max time network
138s -
platform
windows10-2004_x64 -
resource
win10v2004-20220414-en -
submitted
25-06-2022 10:08
Static task
static1
Behavioral task
behavioral1
Sample
fa241e69ab0fe614283f53e81b31ea926ae1ea4e4bfbc051728f9b7277adef72.exe
Resource
win7-20220414-en
windows7_x64
0 signatures
0 seconds
General
-
Target
fa241e69ab0fe614283f53e81b31ea926ae1ea4e4bfbc051728f9b7277adef72.exe
-
Size
172KB
-
MD5
6699fa15ef1ee8eb137d7a5ef73b22f9
-
SHA1
a791f706fe3a3ba405a67fc0720601f287dbff10
-
SHA256
fa241e69ab0fe614283f53e81b31ea926ae1ea4e4bfbc051728f9b7277adef72
-
SHA512
d3511b4718bdefc777130e3b58cc2560f70b13171c713b42e2373f5cc45ad653e8571b53588a627be49260d0848959381a96fdcecfce1767280e04b3e4d3ac8b
Malware Config
Extracted
Family
dridex
C2
5.196.1.113:4433
82.146.55.23:691
131.0.103.194:3389
92.222.219.26:4433
178.62.19.173:3389
Signatures
-
Processes:
resource yara_rule behavioral2/memory/4480-130-0x0000000000400000-0x000000000042C000-memory.dmp dridex_ldr