f648a807db1c4c3953c57c2d1ebf6f4e51e2ed18d061867a79e8003dacdcc174 | Triage

Submit
Reports

Overview

overview

7

Static

static

7

dridex

windows10-2004-x64

7

Sharing

General

Target

f648a807db1c4c3953c57c2d1ebf6f4e51e2ed18d061867a79e8003dacdcc174
Size

277KB
Sample

230213-ey7ynsag56
MD5

6950ed6b0348a4ea40a12d701ab1dc0f
SHA1

caafa032d8fe92dd58c50d33342e34e5977c56b4
SHA256

f648a807db1c4c3953c57c2d1ebf6f4e51e2ed18d061867a79e8003dacdcc174
SHA512

91ef626de7084f9d16d7f04febf78a9169c2b8a4e682f878a38fe183fe9b0c807a7c6206e20b206b4c3cdc6bf3137d39765dc208ce7f7d7f3f26f0126c7a5138
SSDEEP

6144:JXzKdNY49u8rVJHre6SxvfdqbCe1KZV01netV:ya4A8rZSxvAbCH01e

Score

7^/10

upx

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

f648a807db1c4c3953c57c2d1ebf6f4e51e2ed18d061867a79e8003dacdcc174.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  f648a807db1c4c3953c57c2d1ebf6f4e51e2ed18d061867a79e8003dacdcc174
- Size
  
  277KB
- MD5
  
  6950ed6b0348a4ea40a12d701ab1dc0f
- SHA1
  
  caafa032d8fe92dd58c50d33342e34e5977c56b4
- SHA256
  
  f648a807db1c4c3953c57c2d1ebf6f4e51e2ed18d061867a79e8003dacdcc174
- SHA512
  
  91ef626de7084f9d16d7f04febf78a9169c2b8a4e682f878a38fe183fe9b0c807a7c6206e20b206b4c3cdc6bf3137d39765dc208ce7f7d7f3f26f0126c7a5138
- SSDEEP
  
  6144:JXzKdNY49u8rVJHre6SxvfdqbCe1KZV01netV:ya4A8rZSxvAbCH01e
Score

7^/10

upx
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

© 2018-2024

Terms | Privacy