Overview

overview

10

Static

static

dridex

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    0768523eadc4698e0e8c40a0189b542745568645f50d12756897b4b61e47760a

  • Size

    924KB

  • Sample

    221204-pbaprsca6y

  • MD5

    e14bbb677ad03329d2dc698094b66973

  • SHA1

    050ac36fb6fc0a709a1dd0726e201ba71db4c703

  • SHA256

    0768523eadc4698e0e8c40a0189b542745568645f50d12756897b4b61e47760a

  • SHA512

    23c744978fb61af76c1db007e302035e7d7bda4f1278dcc1087ff51463e260a08619771bfe94d594282e12fd66b4960093ddc00db860f62ccc13126dbc8f0a5b

  • SSDEEP

    24576:kv7UQ0df8jVwSr/YYQhs5QKdJTWFYpUX:g6YVr/V95QcpyYuX

Score
10/10
xmrigminer

Malware Config

Targets

    • Target

      0768523eadc4698e0e8c40a0189b542745568645f50d12756897b4b61e47760a

    • Size

      924KB

    • MD5

      e14bbb677ad03329d2dc698094b66973

    • SHA1

      050ac36fb6fc0a709a1dd0726e201ba71db4c703

    • SHA256

      0768523eadc4698e0e8c40a0189b542745568645f50d12756897b4b61e47760a

    • SHA512

      23c744978fb61af76c1db007e302035e7d7bda4f1278dcc1087ff51463e260a08619771bfe94d594282e12fd66b4960093ddc00db860f62ccc13126dbc8f0a5b

    • SSDEEP

      24576:kv7UQ0df8jVwSr/YYQhs5QKdJTWFYpUX:g6YVr/V95QcpyYuX

    Score
    10/10
    xmrigminer

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

      minerxmrig

    • XMRig Miner payload

      miner

    • Executes dropped EXE

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Uses the VBS compiler for execution

    • Suspicious use of SetThreadContext

    behavioral1

MITRE ATT&CK Enterprise v6

Tasks