Overview

overview

10

Static

static

Dridex_f68...78.dll

windows7_x64

10

Dridex_f68...78.dll

windows10-2004_x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Dridex_f68d1f0f0d98e40cd449b394d503d508f4933bbd513bf543579fb787a6a2c878.zip

  • Size

    165KB

  • Sample

    220628-r96afaabgk

  • MD5

    cfc5b3eb50a1ed55bf902ff64bcb06f8

  • SHA1

    7f95359ee55f516f373a9f1719b9d6e6763b81e5

  • SHA256

    fc314c69f300eba28c983b23b79bf0c996b05931fe609a8c8851ae07bc445656

  • SHA512

    486433a50f3631c78afad04cb4be0f20a670da678e5871f8a64417409fcde3c06171f673a7391ce363be257bf8cbaaee9704e3d3cac1ffce69d31be6da151369

Score
10/10
dridex22201botnetloader

Malware Config

Extracted

Family

dridex

Botnet

22201

C2

144.91.122.102:443

85.10.248.28:593

185.4.135.27:5228

80.211.3.13:8116
rc4.plain
rc4.plain

Targets

    • Target

      Dridex_f68d1f0f0d98e40cd449b394d503d508f4933bbd513bf543579fb787a6a2c878.bin

    • Size

      532KB

    • MD5

      20a9ac804323cb3f25623e49ca3cef91

    • SHA1

      40b17cf257ae66c1d4f26f2b0a86904d903f67a9

    • SHA256

      f68d1f0f0d98e40cd449b394d503d508f4933bbd513bf543579fb787a6a2c878

    • SHA512

      77bb331b8450d149db620e21da7b9413a2bef2a47d4894af54bfa17a0d5cb66d4a8f1e1294e4a2d3ebb811315d84b28e103bf4e5a6e6dac80aea6e88afbfa4cd

    Score
    10/10
    dridex22201botnetloader

    • Dridex

      Dridex(known as Bugat/Cridex) is a form of malware that specializes in stealing bank credentials.

      botnetdridex

    • Dridex Loader

      Detects Dridex both x86 and x64 loader in memory.

      botnetloader
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks