ea49ff15eae33ce07bb2d11ab10ef711b6bd6ea4bf76d6a9ed8fe4d06404abe9 | Triage

Submit
Reports

Overview

overview

7

Static

static

7

dridex

windows10-2004-x64

7

Sharing

General

Target

ea49ff15eae33ce07bb2d11ab10ef711b6bd6ea4bf76d6a9ed8fe4d06404abe9
Size

277KB
Sample

230212-rhapfsed95
MD5

295d68bd85d01169de80cc391d97724f
SHA1

0e014fb05e0e35043a58dd99903c9984999c0f7b
SHA256

ea49ff15eae33ce07bb2d11ab10ef711b6bd6ea4bf76d6a9ed8fe4d06404abe9
SHA512

930c9df36a5b0aca9d9c218739073afe2324a8c30983dd5b7164ab3c53b07446156b60da1064cbd2a073c92b24d8f72b203c9cb4857c8daee62d25ed31be2058
SSDEEP

6144:PXzKdNY49u8rVq9lk3nzlMY2qzC01neth:Qa4Al9qBzbC01K

Score

7^/10

upx

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

ea49ff15eae33ce07bb2d11ab10ef711b6bd6ea4bf76d6a9ed8fe4d06404abe9.exe

Resource

win10v2004-20220901-en

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  ea49ff15eae33ce07bb2d11ab10ef711b6bd6ea4bf76d6a9ed8fe4d06404abe9
- Size
  
  277KB
- MD5
  
  295d68bd85d01169de80cc391d97724f
- SHA1
  
  0e014fb05e0e35043a58dd99903c9984999c0f7b
- SHA256
  
  ea49ff15eae33ce07bb2d11ab10ef711b6bd6ea4bf76d6a9ed8fe4d06404abe9
- SHA512
  
  930c9df36a5b0aca9d9c218739073afe2324a8c30983dd5b7164ab3c53b07446156b60da1064cbd2a073c92b24d8f72b203c9cb4857c8daee62d25ed31be2058
- SSDEEP
  
  6144:PXzKdNY49u8rVq9lk3nzlMY2qzC01neth:Qa4Al9qBzbC01K
Score

7^/10

upx
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

© 2018-2024

Terms | Privacy