Overview

overview

8

Static

static

dridex

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    9b4f7d0163558187ebe95edd5cdfd86adf987e35327f37548bb6712ad3f7d782

  • Size

    969KB

  • Sample

    220906-gmjstafhg5

  • MD5

    0599ca3253f47f56391b864e687bea41

  • SHA1

    6360e75a69c56504cacb8db5e20cf3d350dcfe6f

  • SHA256

    9b4f7d0163558187ebe95edd5cdfd86adf987e35327f37548bb6712ad3f7d782

  • SHA512

    7abe72d12746af263522cb1c34530321c70b62ff4db11b9c77c1cd6df7b2adb1fa55b424d9370fe1fa1896e0c5eca571a470454e98ca3322609757b1348899b6

  • SSDEEP

    24576:SHdnyYRdpKhSi9fLefeIcrYZ11jg+9mFZE2:SHdrRdpKhSi9z5IcI1J8Z

Score
8/10
persistence

Malware Config

Targets

    • Target

      9b4f7d0163558187ebe95edd5cdfd86adf987e35327f37548bb6712ad3f7d782

    • Size

      969KB

    • MD5

      0599ca3253f47f56391b864e687bea41

    • SHA1

      6360e75a69c56504cacb8db5e20cf3d350dcfe6f

    • SHA256

      9b4f7d0163558187ebe95edd5cdfd86adf987e35327f37548bb6712ad3f7d782

    • SHA512

      7abe72d12746af263522cb1c34530321c70b62ff4db11b9c77c1cd6df7b2adb1fa55b424d9370fe1fa1896e0c5eca571a470454e98ca3322609757b1348899b6

    • SSDEEP

      24576:SHdnyYRdpKhSi9fLefeIcrYZ11jg+9mFZE2:SHdrRdpKhSi9z5IcI1J8Z

    Score
    8/10
    persistence

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

      persistence

    • Suspicious use of SetThreadContext

    behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

1
T1060

Privilege Escalation

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

Process Discovery

1
T1057

Remote System Discovery

1
T1018

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks