General
-
Target
a3et6u5dw.rarmrtiwyzr
-
Size
1.0MB
-
Sample
220626-fy3vdsgeeq
-
MD5
11ff45c66f3e348e6a917727bba8f5a3
-
SHA1
c283ad51b6fac72e7adfbeda17c7e40b8d58bda0
-
SHA256
661f043e901c0ec7151745e977fc7cc438d979aaee85ce3dbd955b0d2d95d36e
-
SHA512
76ae5f1a64f17feaeb718af3fdba906bbeac68e8063ac03facb59af31b8df4fc87c8daf6718d53010d8c97065250a1b31773fb229a445bf1f7fe3836217ef44a
Static task
static1
Behavioral task
behavioral1
Sample
a3et6u5dw.dll
Resource
win7-20220414-en
Malware Config
Extracted
dridex
10444
192.46.210.220:443
143.244.140.214:808
45.77.0.96:6891
185.56.219.47:8116
Targets
-
-
Target
a3et6u5dw.rarmrtiwyzr
-
Size
1.0MB
-
MD5
11ff45c66f3e348e6a917727bba8f5a3
-
SHA1
c283ad51b6fac72e7adfbeda17c7e40b8d58bda0
-
SHA256
661f043e901c0ec7151745e977fc7cc438d979aaee85ce3dbd955b0d2d95d36e
-
SHA512
76ae5f1a64f17feaeb718af3fdba906bbeac68e8063ac03facb59af31b8df4fc87c8daf6718d53010d8c97065250a1b31773fb229a445bf1f7fe3836217ef44a
-
Blocklisted process makes network request
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-