Overview

overview

8

Static

static

dridex

windows10-1703-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    1f1a3158f2efe4b6c59a627dca9f9758922fa8806caa598d4c8ea6b97aa1a2d7

  • Size

    733KB

  • Sample

    221010-eb5vssaffk

  • MD5

    077d383b2d3c4b4a89fa558ee74b7c28

  • SHA1

    d7d3130542e1efcd72316ba61ec48c19725d8121

  • SHA256

    1f1a3158f2efe4b6c59a627dca9f9758922fa8806caa598d4c8ea6b97aa1a2d7

  • SHA512

    f646864e0db6e4d4b6ae15df8aa42d9d2ce4a7a00a7b5c0cf930df34b60220534f8a371cbeab6e73517bb25530a0af69d03a99e14712100587696a8d87f729b5

  • SSDEEP

    768:rZmchlXKGREW6VA6joSRhFH+C9Pe2auEqainmngYWxuv8Gwmwoe9R4ZstojtfcWv:schl6M+lpDCUoHid0bIrlyR

Score
8/10
persistence

Malware Config

Targets

    • Target

      1f1a3158f2efe4b6c59a627dca9f9758922fa8806caa598d4c8ea6b97aa1a2d7

    • Size

      733KB

    • MD5

      077d383b2d3c4b4a89fa558ee74b7c28

    • SHA1

      d7d3130542e1efcd72316ba61ec48c19725d8121

    • SHA256

      1f1a3158f2efe4b6c59a627dca9f9758922fa8806caa598d4c8ea6b97aa1a2d7

    • SHA512

      f646864e0db6e4d4b6ae15df8aa42d9d2ce4a7a00a7b5c0cf930df34b60220534f8a371cbeab6e73517bb25530a0af69d03a99e14712100587696a8d87f729b5

    • SSDEEP

      768:rZmchlXKGREW6VA6joSRhFH+C9Pe2auEqainmngYWxuv8Gwmwoe9R4ZstojtfcWv:schl6M+lpDCUoHid0bIrlyR

    Score
    8/10
    persistence

    • Downloads MZ/PE file

    • Executes dropped EXE

    • Adds Run key to start application

      persistence

    • Legitimate hosting services abused for malware hosting/C2

    behavioral1

MITRE ATT&CK Enterprise v6

Tasks