Overview

overview

10

Static

static

Dridex_03b...2c.dll

windows7_x64

10

Dridex_03b...2c.dll

windows10-2004_x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Dridex_03ba158e40b1f9c80c0430cd9a06f00bcbddd3826a5965fccb4ac5b242b91a2c.zip

  • Size

    165KB

  • Sample

    220628-r9zsnaabcn

  • MD5

    745a23b3a985135ee7b20cc18d36f40b

  • SHA1

    f601f7f8294964998725fada8367fd2610a975bb

  • SHA256

    cf6772f01b2af9d0a57d9ff67160f656a24c1a0c3450bb0686cdb5a7e1167123

  • SHA512

    d46029baffbb620e4105fa77e36a6246d3dc67a1932344230c053d0ee85f7766ef1c6e2d8dfeaa1ebfe0d0a428a85f2dd1506a6987bb7ac8573826934644e6b5

Score
10/10
dridex22201botnetloader

Malware Config

Extracted

Family

dridex

Botnet

22201

C2

144.91.122.102:443

85.10.248.28:593

185.4.135.27:5228

80.211.3.13:8116
rc4.plain
rc4.plain

Targets

    • Target

      Dridex_03ba158e40b1f9c80c0430cd9a06f00bcbddd3826a5965fccb4ac5b242b91a2c.bin

    • Size

      532KB

    • MD5

      d633b0989e97dc05b09b6233fb53cf37

    • SHA1

      6e5a7f0493fea40bd213209ad06f4dd9069969ed

    • SHA256

      03ba158e40b1f9c80c0430cd9a06f00bcbddd3826a5965fccb4ac5b242b91a2c

    • SHA512

      28a594e2f150c7f9a970f068072fe92bcc4c08dc28893023675fec9ea60926c36c044f8200ff6b5759c6173a2ab3771fa18545c3fa8b9c5328ff54e615eb705c

    Score
    10/10
    dridex22201botnetloader

    • Dridex

      Dridex(known as Bugat/Cridex) is a form of malware that specializes in stealing bank credentials.

      botnetdridex

    • Dridex Loader

      Detects Dridex both x86 and x64 loader in memory.

      botnetloader
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks