Analysis
-
max time kernel
183s -
max time network
190s -
platform
windows10-2004_x64 -
resource
win10v2004-20220414-en -
submitted
01-07-2022 06:46
Static task
static1
Behavioral task
behavioral1
Sample
3e8d77dd02102c2ca94aacde3e3c03790b9c610308cfc96d8440b1592a337242.exe
Resource
win7-20220414-en
windows7_x64
0 signatures
0 seconds
General
-
Target
3e8d77dd02102c2ca94aacde3e3c03790b9c610308cfc96d8440b1592a337242.exe
-
Size
216KB
-
MD5
a597ba3b363b2362c3f7e6d35e72c6e7
-
SHA1
c2ca5bf1396673c28de6b8bcf971f0a0354b4f04
-
SHA256
3e8d77dd02102c2ca94aacde3e3c03790b9c610308cfc96d8440b1592a337242
-
SHA512
c267fdb749a3c3a2a6cf9c6a708219fdecf4cf2e946678460860c985da9803e5a5dc9f028fe2ea406c9e435f0f89ee10c1142c5576bc74c6d74f6e5b4e921010
Malware Config
Extracted
Family
dridex
C2
46.105.131.75:443
70.57.239.89:3389
66.228.47.181:443
198.199.106.229:5900
Signatures
-
Processes:
resource yara_rule behavioral2/memory/1656-130-0x0000000001250000-0x0000000001286000-memory.dmp dridex_ldr