Overview

overview

10

Static

static

b18028ac07...15.dll

windows7-x64

10

b18028ac07...15.dll

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    b18028ac07b48288dd041e9b3e29f4fd459f70b8a3e4ca81d37aee68a9711115

  • Size

    312KB

  • Sample

    220725-ddsskscaam

  • MD5

    1ce34090fcf71f9238fd09c5e8e1812b

  • SHA1

    cb64a6a8f52e7aec11cba5828622823b0ea09013

  • SHA256

    b18028ac07b48288dd041e9b3e29f4fd459f70b8a3e4ca81d37aee68a9711115

  • SHA512

    685e9879ec156c3b8c3ae9aca2d9deda0fdc31f64f9c59e609fac3896bff3ba976684c3e6423137c5c55be318bca087b60e3e04859ade5934ef349bbf39759e4

Score
10/10
dridexbotnetloader

Malware Config

Extracted

Family

dridex

C2

194.99.22.193:443

178.63.67.20:691

75.127.14.171:3389

134.213.221.29:8443

Targets

    • Target

      b18028ac07b48288dd041e9b3e29f4fd459f70b8a3e4ca81d37aee68a9711115

    • Size

      312KB

    • MD5

      1ce34090fcf71f9238fd09c5e8e1812b

    • SHA1

      cb64a6a8f52e7aec11cba5828622823b0ea09013

    • SHA256

      b18028ac07b48288dd041e9b3e29f4fd459f70b8a3e4ca81d37aee68a9711115

    • SHA512

      685e9879ec156c3b8c3ae9aca2d9deda0fdc31f64f9c59e609fac3896bff3ba976684c3e6423137c5c55be318bca087b60e3e04859ade5934ef349bbf39759e4

    Score
    10/10
    dridexbotnetloader

    • Dridex

      Dridex(known as Bugat/Cridex) is a form of malware that specializes in stealing bank credentials.

      botnetdridex

    • Dridex Loader

      Detects Dridex both x86 and x64 loader in memory.

      botnetloader
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks