c489ca5d7d295c78e8a8bd76ffc8bb742d3519a310c0ec44e92a5b6254afac85 | Triage

Submit
Reports

Overview

overview

7

Static

static

7

dridex

windows10-2004-x64

7

Sharing

General

Target

c489ca5d7d295c78e8a8bd76ffc8bb742d3519a310c0ec44e92a5b6254afac85
Size

277KB
Sample

230211-v8hpjadf88
MD5

6a5ea8791f15895cb4be5c2a3dbfd1fc
SHA1

bbcae6fb8931c6fad683b4069f957152cb721c7d
SHA256

c489ca5d7d295c78e8a8bd76ffc8bb742d3519a310c0ec44e92a5b6254afac85
SHA512

5a1e55c7f74b6f6c1123ff074f9b98faf9ac35968ef45515c18438f9523c84524e0c9fe3b429316618e46e60b06d2bb715b9e1d5317e33353fdb35487a025f20
SSDEEP

6144:YXzKdNY49u8rVdlZpugmv+3gkCK2ib01netzY:Ha4A8nI0hb013

Score

7^/10

upx

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

c489ca5d7d295c78e8a8bd76ffc8bb742d3519a310c0ec44e92a5b6254afac85.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  c489ca5d7d295c78e8a8bd76ffc8bb742d3519a310c0ec44e92a5b6254afac85
- Size
  
  277KB
- MD5
  
  6a5ea8791f15895cb4be5c2a3dbfd1fc
- SHA1
  
  bbcae6fb8931c6fad683b4069f957152cb721c7d
- SHA256
  
  c489ca5d7d295c78e8a8bd76ffc8bb742d3519a310c0ec44e92a5b6254afac85
- SHA512
  
  5a1e55c7f74b6f6c1123ff074f9b98faf9ac35968ef45515c18438f9523c84524e0c9fe3b429316618e46e60b06d2bb715b9e1d5317e33353fdb35487a025f20
- SSDEEP
  
  6144:YXzKdNY49u8rVdlZpugmv+3gkCK2ib01netzY:Ha4A8nI0hb013
Score

7^/10

upx
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

© 2018-2024

Terms | Privacy