dridex | 8270f037f4d4365f56382c60c6aff8689a4802e8 | Triage

Submit
Reports

Overview

overview

Static

static

8270f037f4...e8.exe

windows7_x64

1

8270f037f4...e8.exe

windows10-2004_x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

8270f037f4d4365f56382c60c6aff8689a4802e8.exe

Resource

win7-20220414-en

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

8270f037f4d4365f56382c60c6aff8689a4802e8.exe

Resource

win10v2004-20220414-en

windows10-2004_x64

0 signatures

0 seconds

General

Target

8270f037f4d4365f56382c60c6aff8689a4802e8
Size

87KB
MD5

269d3560e5410398f1d6a16eedac6f18
SHA1

8270f037f4d4365f56382c60c6aff8689a4802e8
SHA256

9c2334f02ba3d78293b210167cb36daa503ad5b1cd25d03574a076888b29e66a
SHA512

9c9f8d66b3ae1265a09c50072afa781a885a857c81c87d88a097c2c319117e74dfc737a03b7851461b35b0415aa598358cfabaf928009dc0f9510147e4ea6435
SSDEEP

1536:eM1784w7gYBMnH01ZO0XLmrwCRevyiOMIQR4Gr/JoGSOdjYwF7fbQ12KTSk60n5k:eM1784w7gYBMnUPOmIxRevyiXIQWGzJx

Score

10^/10

dridex

Malware Config

Extracted

Family

dridex

C2

46.105.131.67:443

67.207.148.158:443

184.106.153.73:443

208.78.100.202:1801

Signatures

Dridex family
dridex

Files

8270f037f4d4365f56382c60c6aff8689a4802e8
.exe windows x86

21626130d9d56e7fc3c160241339a20d

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

OutputDebugStringW
Sleep

Sections

.text
Size: 74KB - Virtual size: 73KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 228B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 528B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy