Overview

overview

10

Static

static

Dridex_07c...71.dll

windows7_x64

10

Dridex_07c...71.dll

windows10-2004_x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Dridex_07c08b4a043b8bc8bea97f36414ae42ade74a37c4d5542727fe6fb0644a48a71.zip

  • Size

    166KB

  • Sample

    220628-r9353sabem

  • MD5

    f4198aff3597849ed6c74757e4b54953

  • SHA1

    b4d906e9f9340d86e7fe77c06150b660269628e5

  • SHA256

    c1decc725d0683a1e4110f708afbe9622450f7490ca1882d78a3233e0e8f32ac

  • SHA512

    3c635c2728686fd44fc024b542c3b1fefa8e22741b54987a463ebb967f95ba0cce324d101e8d045c6b227c20a73ae9eaa7695bc6703cfdf9619970290a17fb26

Score
10/10
dridex22201botnetloader

Malware Config

Extracted

Family

dridex

Botnet

22201

C2

144.91.122.102:443

85.10.248.28:593

185.4.135.27:5228

80.211.3.13:8116
rc4.plain
rc4.plain

Targets

    • Target

      Dridex_07c08b4a043b8bc8bea97f36414ae42ade74a37c4d5542727fe6fb0644a48a71.bin

    • Size

      532KB

    • MD5

      9e01fd2137e4b2b6e5bec3c7e3e40a77

    • SHA1

      da6ef7a2e64e977b43801e75c2f063ca7094dc3f

    • SHA256

      07c08b4a043b8bc8bea97f36414ae42ade74a37c4d5542727fe6fb0644a48a71

    • SHA512

      4e47f592ab935097fb908459d6ffb5112266ba92c76d26ac049af5658c56afbf25f53417b7543340296268ef28c15d3dd0666f2fd55cad2f546bf43e4ce523a1

    Score
    10/10
    dridex22201botnetloader

    • Dridex

      Dridex(known as Bugat/Cridex) is a form of malware that specializes in stealing bank credentials.

      botnetdridex

    • Dridex Loader

      Detects Dridex both x86 and x64 loader in memory.

      botnetloader
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks