632c41525be6469839101f5411db9978aed3f03b8a70cfb10d932f424e22ee1a | Triage

Submit
Reports

Overview

overview

7

Static

static

7

dridex

windows10-2004-x64

7

Sharing

General

Target

632c41525be6469839101f5411db9978aed3f03b8a70cfb10d932f424e22ee1a
Size

277KB
Sample

230212-ay9eaage92
MD5

ee9a0b7a93f4d933dfcbe4c422064cfa
SHA1

f2b2e24c95316f7d00417aa2d27da8f80d782b6b
SHA256

632c41525be6469839101f5411db9978aed3f03b8a70cfb10d932f424e22ee1a
SHA512

af1f4397731bb6465ff4422632900ba759bafbc21c331280ac802f126af390f8d60c0a5bc8ee2f69bfd20c517de5fe5bc498b1777409bdd32b653b01efa4a8d0
SSDEEP

6144:qXzKdNY49u8rVFmhV7k1QXzF5O201netS:pa4Aam/7lXi201x

Score

7^/10

upx

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

632c41525be6469839101f5411db9978aed3f03b8a70cfb10d932f424e22ee1a.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  632c41525be6469839101f5411db9978aed3f03b8a70cfb10d932f424e22ee1a
- Size
  
  277KB
- MD5
  
  ee9a0b7a93f4d933dfcbe4c422064cfa
- SHA1
  
  f2b2e24c95316f7d00417aa2d27da8f80d782b6b
- SHA256
  
  632c41525be6469839101f5411db9978aed3f03b8a70cfb10d932f424e22ee1a
- SHA512
  
  af1f4397731bb6465ff4422632900ba759bafbc21c331280ac802f126af390f8d60c0a5bc8ee2f69bfd20c517de5fe5bc498b1777409bdd32b653b01efa4a8d0
- SSDEEP
  
  6144:qXzKdNY49u8rVFmhV7k1QXzF5O201netS:pa4Aam/7lXi201x
Score

7^/10

upx
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

© 2018-2024

Terms | Privacy