Overview

overview

1

Static

static

dridex

windows10-2004-x64

1

Analysis

  • max time kernel
    129s
  • max time network
    147s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20220901-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20220901-enlocale:en-usos:windows10-2004-x64system
  • submitted
    25-10-2022 05:28

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    55a75580ff02a8fcb1220a95990c088e2fd122c9ab1f86c5a95bde5ad9104d1a.exe

  • Size

    56KB

  • MD5

    7a6171d705b7edcb534944640e4b1dab

  • SHA1

    f6511aa4c0aadc5b319607cd258f7d9007c29293

  • SHA256

    55a75580ff02a8fcb1220a95990c088e2fd122c9ab1f86c5a95bde5ad9104d1a

  • SHA512

    67e6aa36eb203b4915c407465194c5f6131b01a03fcb88c804a3476bbc44e0a44a97710e5ef08365e935b8b6fb8c4c6a154e3bcf0ce0e32840dff2fb8322465b

  • SSDEEP

    768:00K6MeTyq4bo+ZobGjCIBo9cm4iAGLDe0vN2+Fr0LLsLSieN++BGtWLnkoB:C6tD4bVZM+o9cefe0l2PLvtNDBSWL3

Score
1/10

Malware Config

Signatures

  • Suspicious use of AdjustPrivilegeToken 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\55a75580ff02a8fcb1220a95990c088e2fd122c9ab1f86c5a95bde5ad9104d1a.exe
    "C:\Users\Admin\AppData\Local\Temp\55a75580ff02a8fcb1220a95990c088e2fd122c9ab1f86c5a95bde5ad9104d1a.exe"
    1⤵
    • Suspicious use of AdjustPrivilegeToken
    PID:1152

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/1152-132-0x0000000000650000-0x0000000000664000-memory.dmp

    Filesize

    80KB

    Download

  • memory/1152-133-0x000000000ACB0000-0x000000000AD4C000-memory.dmp

    Filesize

    624KB

    Download