a397deb62094d4a207df0d61a1b6d8db1bc55225a8242194f946bdf81166f149 | Triage

Submit
Reports

Overview

overview

7

Static

static

7

dridex

windows10-2004-x64

7

Sharing

General

Target

a397deb62094d4a207df0d61a1b6d8db1bc55225a8242194f946bdf81166f149
Size

277KB
Sample

230212-a87cnsha93
MD5

3c5bc78ab8d7c5e695fb0677a4ae2351
SHA1

976c53d92d1fd127e01e2913862b2f59c4598743
SHA256

a397deb62094d4a207df0d61a1b6d8db1bc55225a8242194f946bdf81166f149
SHA512

9ab6bfa5f3eebd0f5b1c8387e3c3caf364c76ea8d85028e2d370737934ff996e4f805510645f892ff3f65c52953aa8abee5a3c6ff6790ec7b0964b33aab36a74
SSDEEP

6144:lXzKdNY49u8rV16btCNd4cj3VUKIpBdu01netF:Wa4AC6bsNd4cxfIw01+

Score

7^/10

upx

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

a397deb62094d4a207df0d61a1b6d8db1bc55225a8242194f946bdf81166f149.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  a397deb62094d4a207df0d61a1b6d8db1bc55225a8242194f946bdf81166f149
- Size
  
  277KB
- MD5
  
  3c5bc78ab8d7c5e695fb0677a4ae2351
- SHA1
  
  976c53d92d1fd127e01e2913862b2f59c4598743
- SHA256
  
  a397deb62094d4a207df0d61a1b6d8db1bc55225a8242194f946bdf81166f149
- SHA512
  
  9ab6bfa5f3eebd0f5b1c8387e3c3caf364c76ea8d85028e2d370737934ff996e4f805510645f892ff3f65c52953aa8abee5a3c6ff6790ec7b0964b33aab36a74
- SSDEEP
  
  6144:lXzKdNY49u8rV16btCNd4cj3VUKIpBdu01netF:Wa4AC6bsNd4cxfIw01+
Score

7^/10

upx
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

© 2018-2025

Terms | Privacy