Overview

overview

10

Static

static

dridex

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    99e288ced9a2bb886d8721db1c548b06042e83bbbd086c4f5ab22eb6e4f98a7f

  • Size

    872KB

  • Sample

    230103-ja57dsag34

  • MD5

    216e2dd210f6e4d4e5b2bae8d96502fc

  • SHA1

    456847ce8e23d83457321a4aea378e09a27c2653

  • SHA256

    99e288ced9a2bb886d8721db1c548b06042e83bbbd086c4f5ab22eb6e4f98a7f

  • SHA512

    1cbcac422b89f1905dcb16c37636274ad2c57c407d50eae137073d7201b33b26633adb6c28208287d0057fc4135416856db6e66776bffda69d51e7262bc37503

  • SSDEEP

    24576:+lDorYHZLD4o0t+Ii5aeRCTT88highagYLY:+NZLDCiPkTT8R

Score
10/10
xmrigminer

Malware Config

Targets

    • Target

      99e288ced9a2bb886d8721db1c548b06042e83bbbd086c4f5ab22eb6e4f98a7f

    • Size

      872KB

    • MD5

      216e2dd210f6e4d4e5b2bae8d96502fc

    • SHA1

      456847ce8e23d83457321a4aea378e09a27c2653

    • SHA256

      99e288ced9a2bb886d8721db1c548b06042e83bbbd086c4f5ab22eb6e4f98a7f

    • SHA512

      1cbcac422b89f1905dcb16c37636274ad2c57c407d50eae137073d7201b33b26633adb6c28208287d0057fc4135416856db6e66776bffda69d51e7262bc37503

    • SSDEEP

      24576:+lDorYHZLD4o0t+Ii5aeRCTT88highagYLY:+NZLDCiPkTT8R

    Score
    10/10
    xmrigminer

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

      minerxmrig

    • XMRig Miner payload

      miner

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Uses the VBS compiler for execution

    • Suspicious use of SetThreadContext

    behavioral1

MITRE ATT&CK Enterprise v6

Tasks