dridex | e6c755480d644a243e5168b16cad306c0571ceaac75c4ae7525a7ccfd7a2cf6c | Triage

Sharing

General

Target

e6c755480d644a243e5168b16cad306c0571ceaac75c4ae7525a7ccfd7a2cf6c
Size

144KB
Sample

221130-txecasac3t
MD5

48f258baf0ecff39911dcdc93d9e73cc
SHA1

b0ad634dd1338657af9799f3449a9a41ae77dd64
SHA256

e6c755480d644a243e5168b16cad306c0571ceaac75c4ae7525a7ccfd7a2cf6c
SHA512

38f17ce3e9d8ec8cf882e4ef4b793e86006e03101d4a1389a154e45fedf30441897d62dbcee3251a31f3846228fff11f15198c8bcf24c49ef3e43d3368c09f50
SSDEEP

3072:neoLUlBYbEH8u1PpFk1DOBsj/RtilhY99bDds:KlBYba9zk1DriXYLb

Score

10^/10

dridex botnet

Malware Config

Extracted

Family

dridex

C2

104.131.7.40:443

128.199.247.176:1801

69.45.19.145:3889

95.211.148.20:1443

Targets

- Target
  
  e6c755480d644a243e5168b16cad306c0571ceaac75c4ae7525a7ccfd7a2cf6c
- Size
  
  144KB
- MD5
  
  48f258baf0ecff39911dcdc93d9e73cc
- SHA1
  
  b0ad634dd1338657af9799f3449a9a41ae77dd64
- SHA256
  
  e6c755480d644a243e5168b16cad306c0571ceaac75c4ae7525a7ccfd7a2cf6c
- SHA512
  
  38f17ce3e9d8ec8cf882e4ef4b793e86006e03101d4a1389a154e45fedf30441897d62dbcee3251a31f3846228fff11f15198c8bcf24c49ef3e43d3368c09f50
- SSDEEP
  
  3072:neoLUlBYbEH8u1PpFk1DOBsj/RtilhY99bDds:KlBYba9zk1DriXYLb
Score

10^/10

dridex botnet
- Dridex
  Dridex(known as Bugat/Cridex) is a form of malware that specializes in stealing bank credentials.
  botnet dridex
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2