Overview

overview

10

Static

static

dridex

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    0d3afe35e9e90403976420721f8829258064fc252a9e3eab559530e3131f16ad

  • Size

    674KB

  • Sample

    230104-n6jeqaaf5w

  • MD5

    211b65fd5281a6d63a919bb9321253bf

  • SHA1

    0e8e8891d69bb37c748b82887ba1383815be4cbc

  • SHA256

    0d3afe35e9e90403976420721f8829258064fc252a9e3eab559530e3131f16ad

  • SHA512

    7dc2efa80139d9a21bf3df275714dfc0a2a3dfff7f9a7a10ba77e4db43b509f6c637164b676e443a418dcac7dec9714d9f0a7574cfafde761bb50b7b811b0851

  • SSDEEP

    12288:Ow/QszwHJeXzFV3EprZTMEuPwGM2KtsCziNHhMDGY3FB/hmv3U/jYJLwDR0CZCOw:lQiwpeXpBGrZTDYssCzGhCLz5mvWZCD

Score
10/10
xmrigminer

Malware Config

Targets

    • Target

      0d3afe35e9e90403976420721f8829258064fc252a9e3eab559530e3131f16ad

    • Size

      674KB

    • MD5

      211b65fd5281a6d63a919bb9321253bf

    • SHA1

      0e8e8891d69bb37c748b82887ba1383815be4cbc

    • SHA256

      0d3afe35e9e90403976420721f8829258064fc252a9e3eab559530e3131f16ad

    • SHA512

      7dc2efa80139d9a21bf3df275714dfc0a2a3dfff7f9a7a10ba77e4db43b509f6c637164b676e443a418dcac7dec9714d9f0a7574cfafde761bb50b7b811b0851

    • SSDEEP

      12288:Ow/QszwHJeXzFV3EprZTMEuPwGM2KtsCziNHhMDGY3FB/hmv3U/jYJLwDR0CZCOw:lQiwpeXpBGrZTDYssCzGhCLz5mvWZCD

    Score
    10/10
    xmrigminer

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

      minerxmrig

    • XMRig Miner payload

      miner

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Uses the VBS compiler for execution

    • Suspicious use of SetThreadContext

    behavioral1

MITRE ATT&CK Enterprise v6

Tasks