Overview

overview

10

Static

static

9

Dridex_6e0...b6.exe

windows7_x64

10

Dridex_6e0...b6.exe

windows10-2004_x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Dridex_6e02b72b5dcec24da59a2cefea83d4b60bb28a8d20f878b2017794c2c71d45b6.zip

  • Size

    168KB

  • Sample

    220628-r943daabfp

  • MD5

    12a31f4cfb450921afc721c7948c5157

  • SHA1

    91f991a08694a9a3b22984916140217e1db5d71d

  • SHA256

    4f0b8455a042c4caa0398bb0ef89661214bb905b51f8c2c68d6e1b24c2ac25d9

  • SHA512

    9739ffd5191af6509104702b19e56ef830385aa9a96076d14265acb4493bd348718c791414f117e84536c680ced22eaed42ff12c428b6410b05c7a55f94285c9

Score
10/10
dridex10111botnetcryptonepacker

Malware Config

Extracted

Family

dridex

Botnet

10111

C2

87.98.218.33:443

54.38.143.246:691

159.65.79.173:3886

153.122.13.133:1443
rc4.plain
rc4.plain

Targets

    • Target

      Dridex_6e02b72b5dcec24da59a2cefea83d4b60bb28a8d20f878b2017794c2c71d45b6.bin

    • Size

      211KB

    • MD5

      00fbb7753cd6a3fc1c34410487f350f7

    • SHA1

      bf5fce6b6f12432b84448fd02af797616ee28669

    • SHA256

      6e02b72b5dcec24da59a2cefea83d4b60bb28a8d20f878b2017794c2c71d45b6

    • SHA512

      7341d1c03493e9bd2e2b7278e31ef3f90f240aaf4c83e4eace60587208dc36c1c317a82b841fb7c66282b52fa4749882bbf2151c4efc22c31081a6233ad4a9a3

    Score
    10/10
    dridex10111botnet

    • Dridex

      Dridex(known as Bugat/Cridex) is a form of malware that specializes in stealing bank credentials.

      botnetdridex
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks