dridex | 4f0b8455a042c4caa0398bb0ef89661214bb905b51f8c2c68d6e1b24c2ac25d9 | Triage

Sharing

General

Target

Dridex_6e02b72b5dcec24da59a2cefea83d4b60bb28a8d20f878b2017794c2c71d45b6.zip
Size

168KB
Sample

220628-r943daabfp
MD5

12a31f4cfb450921afc721c7948c5157
SHA1

91f991a08694a9a3b22984916140217e1db5d71d
SHA256

4f0b8455a042c4caa0398bb0ef89661214bb905b51f8c2c68d6e1b24c2ac25d9
SHA512

9739ffd5191af6509104702b19e56ef830385aa9a96076d14265acb4493bd348718c791414f117e84536c680ced22eaed42ff12c428b6410b05c7a55f94285c9

Score

10^/10

dridex 10111 botnet cryptone packer

Malware Config

Extracted

Family

dridex

Botnet

10111

C2

87.98.218.33:443

54.38.143.246:691

159.65.79.173:3886

153.122.13.133:1443

rc4.plain

rc4.plain

Targets

- Target
  
  Dridex_6e02b72b5dcec24da59a2cefea83d4b60bb28a8d20f878b2017794c2c71d45b6.bin
- Size
  
  211KB
- MD5
  
  00fbb7753cd6a3fc1c34410487f350f7
- SHA1
  
  bf5fce6b6f12432b84448fd02af797616ee28669
- SHA256
  
  6e02b72b5dcec24da59a2cefea83d4b60bb28a8d20f878b2017794c2c71d45b6
- SHA512
  
  7341d1c03493e9bd2e2b7278e31ef3f90f240aaf4c83e4eace60587208dc36c1c317a82b841fb7c66282b52fa4749882bbf2151c4efc22c31081a6233ad4a9a3
Score

10^/10

dridex 10111 botnet
- Dridex
  Dridex(known as Bugat/Cridex) is a form of malware that specializes in stealing bank credentials.
  botnet dridex
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

dridex10111botnet

behavioral2

dridex10111botnet