Analysis
-
max time kernel
91s -
max time network
157s -
platform
windows10-2004_x64 -
resource
win10v2004-20220414-en -
submitted
28-06-2022 14:54
Behavioral task
behavioral1
Sample
Dridex_607b61007b50f376827b01c32ce04d653fffe96e41991bf320dcb9501d83e1bc.exe
Resource
win7-20220414-en
windows7_x64
0 signatures
0 seconds
General
-
Target
Dridex_607b61007b50f376827b01c32ce04d653fffe96e41991bf320dcb9501d83e1bc.exe
-
Size
823KB
-
MD5
c761bb46e53fb703c76e3f1d33006eff
-
SHA1
e6a7f54057a15eab23aab41cbbcfe8ad801486a0
-
SHA256
607b61007b50f376827b01c32ce04d653fffe96e41991bf320dcb9501d83e1bc
-
SHA512
78c0301701a322bba84e15e575086b64cd76e507e70eebb9ab600bc7de07002900646fb80f4cdbedfef0d352cd89e466a63805d8c2e3236a6b1d525789891f61
Malware Config
Extracted
Family
dridex
Botnet
10111
C2
120.138.97.98:443
49.212.179.180:3889
27.254.174.70:4443
rc4.plain
rc4.plain
Signatures
-
Processes:
resource yara_rule behavioral2/memory/2416-131-0x0000000000400000-0x00000000004D0000-memory.dmp dridex_ldr_dmod