Overview

overview

10

Static

static

dridex

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    6c6cd72218ffa6fc6d223206b66479c07094f8f054f5a878df456eb56c10483d

  • Size

    739KB

  • Sample

    230106-ms49lafg53

  • MD5

    b4dcc8bc801f4109323ad85af4c1fb64

  • SHA1

    926a2869b87b41566af34d0c842bea6c076b2b09

  • SHA256

    6c6cd72218ffa6fc6d223206b66479c07094f8f054f5a878df456eb56c10483d

  • SHA512

    22b5664ebc63772265a31a40a3968cbc75a30c2315ef03f8c43c0d787c2b30c079fa4b4e165d3bbf9a4485b2c6fb68efcef905cc8ddbcf9b3a5ec21e5f22278d

  • SSDEEP

    12288:7lwmz9bGU/JIYM0pjeiAQpk8+AYQX7tmtfbAmtccaCmsM4EleFnh/5:7lwGWYjVeYpkLRAmttXmsM4MeFh/

Score
10/10
xmrigminer

Malware Config

Targets

    • Target

      6c6cd72218ffa6fc6d223206b66479c07094f8f054f5a878df456eb56c10483d

    • Size

      739KB

    • MD5

      b4dcc8bc801f4109323ad85af4c1fb64

    • SHA1

      926a2869b87b41566af34d0c842bea6c076b2b09

    • SHA256

      6c6cd72218ffa6fc6d223206b66479c07094f8f054f5a878df456eb56c10483d

    • SHA512

      22b5664ebc63772265a31a40a3968cbc75a30c2315ef03f8c43c0d787c2b30c079fa4b4e165d3bbf9a4485b2c6fb68efcef905cc8ddbcf9b3a5ec21e5f22278d

    • SSDEEP

      12288:7lwmz9bGU/JIYM0pjeiAQpk8+AYQX7tmtfbAmtccaCmsM4EleFnh/5:7lwGWYjVeYpkLRAmttXmsM4MeFh/

    Score
    10/10
    xmrigminer

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

      minerxmrig

    • XMRig Miner payload

      miner

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Uses the VBS compiler for execution

    • Suspicious use of SetThreadContext

    behavioral1

MITRE ATT&CK Enterprise v6

Tasks