Overview

overview

10

Static

static

Dridex_edd...e8.dll

windows7_x64

10

Dridex_edd...e8.dll

windows10-2004_x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Dridex_edd5c9a776ab5864b62e9ee140d3474ee2fe4c46de591aa3a25bbd133a9f9fe8.zip

  • Size

    166KB

  • Sample

    220628-r9y65abhc6

  • MD5

    461d9dc036bb7d14d1bd7195d536b9cb

  • SHA1

    ad68793eb553efe4f2f72b5da20a3fbb8899674d

  • SHA256

    33331eeb4f81e1933b6f5641c14d463801e2956b5635817fe135fa96a5ae1649

  • SHA512

    e71a1825976216c65c50a86efd4f17a8b63f96b8500f4562dce9c02498c5edef87b152800c0e06c7c4ccdff16baba539118fe69601275c015474ab44c5ba84c2

Score
10/10
dridex22201botnetloader

Malware Config

Extracted

Family

dridex

Botnet

22201

C2

144.91.122.102:443

85.10.248.28:593

185.4.135.27:5228

80.211.3.13:8116
rc4.plain
rc4.plain

Targets

    • Target

      Dridex_edd5c9a776ab5864b62e9ee140d3474ee2fe4c46de591aa3a25bbd133a9f9fe8.bin

    • Size

      532KB

    • MD5

      1ce52b16a6071024ac3c2557c6a70b9a

    • SHA1

      ea42d43398124793c7769ab36e28d5750b338004

    • SHA256

      edd5c9a776ab5864b62e9ee140d3474ee2fe4c46de591aa3a25bbd133a9f9fe8

    • SHA512

      3f4098fbbab9a604e2b9b087a05c901d7a5393232132f61e36d819d3347bf2cf66fbc9bfac56f0dbb80f3d2338be246fc00a01251fcd0890bd41733806a4e9bc

    Score
    10/10
    dridex22201botnetloader

    • Dridex

      Dridex(known as Bugat/Cridex) is a form of malware that specializes in stealing bank credentials.

      botnetdridex

    • Dridex Loader

      Detects Dridex both x86 and x64 loader in memory.

      botnetloader
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks