Overview

overview

10

Static

static

6cf9ddc4bb...89.exe

windows7_x64

10

6cf9ddc4bb...89.exe

windows10-2004_x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    6cf9ddc4bb1e5639988385225eaaa6fc37a933088a79caeec7b5da1da9c58989

  • Size

    168KB

  • Sample

    220701-dtvl4shham

  • MD5

    58be35554a0bbbc7c4ccaddaf780bd55

  • SHA1

    bd6b809d8fd98e3e58a632620b08d33822dab985

  • SHA256

    6cf9ddc4bb1e5639988385225eaaa6fc37a933088a79caeec7b5da1da9c58989

  • SHA512

    efdbaf35f85b118c75dc02593f5a521934f79464434743dc1f5f12504ac90e4866a6c0ce4afa3a6a4e292723c1bb86159163c359934f64beb8df4f80a14e6403

Score
10/10
dridexbotnetloader

Malware Config

Extracted

Family

dridex

C2

162.243.82.116:443

152.89.236.214:1443

192.254.173.31:1443

74.208.74.92:1443

Targets

    • Target

      6cf9ddc4bb1e5639988385225eaaa6fc37a933088a79caeec7b5da1da9c58989

    • Size

      168KB

    • MD5

      58be35554a0bbbc7c4ccaddaf780bd55

    • SHA1

      bd6b809d8fd98e3e58a632620b08d33822dab985

    • SHA256

      6cf9ddc4bb1e5639988385225eaaa6fc37a933088a79caeec7b5da1da9c58989

    • SHA512

      efdbaf35f85b118c75dc02593f5a521934f79464434743dc1f5f12504ac90e4866a6c0ce4afa3a6a4e292723c1bb86159163c359934f64beb8df4f80a14e6403

    Score
    10/10
    dridexbotnetloader

    • Dridex

      Dridex(known as Bugat/Cridex) is a form of malware that specializes in stealing bank credentials.

      botnetdridex

    • Dridex Loader

      Detects Dridex both x86 and x64 loader in memory.

      botnetloader
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks