163d284a02f5a3f9db3adf6a2cf49c12806d288602aaf4ec17288e55096212cb | Triage

Submit
Reports

Overview

overview

7

Static

static

7

dridex

windows10-2004-x64

7

Sharing

General

Target

163d284a02f5a3f9db3adf6a2cf49c12806d288602aaf4ec17288e55096212cb
Size

277KB
Sample

230305-stbassgb6w
MD5

4e52b27b32dcbe529f9b61803d029622
SHA1

f687ddef934e5dd9c9ad092f2e883c0aa74d21f3
SHA256

163d284a02f5a3f9db3adf6a2cf49c12806d288602aaf4ec17288e55096212cb
SHA512

af4a34ecf603ae56aacaaba78381070e83b59d6bb713c50649ee24db15bddf18d282c2c416d6ecb44f3c094a09b0865741b60c44cf38665cfaa92179cfe3129a
SSDEEP

6144:qXzKdNY49u8rVtBSEhI1pRDl8yuLk001netB:pa4ACY80p2B01G

Score

7^/10

upx

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

163d284a02f5a3f9db3adf6a2cf49c12806d288602aaf4ec17288e55096212cb.exe

Resource

win10v2004-20230221-en

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  163d284a02f5a3f9db3adf6a2cf49c12806d288602aaf4ec17288e55096212cb
- Size
  
  277KB
- MD5
  
  4e52b27b32dcbe529f9b61803d029622
- SHA1
  
  f687ddef934e5dd9c9ad092f2e883c0aa74d21f3
- SHA256
  
  163d284a02f5a3f9db3adf6a2cf49c12806d288602aaf4ec17288e55096212cb
- SHA512
  
  af4a34ecf603ae56aacaaba78381070e83b59d6bb713c50649ee24db15bddf18d282c2c416d6ecb44f3c094a09b0865741b60c44cf38665cfaa92179cfe3129a
- SSDEEP
  
  6144:qXzKdNY49u8rVtBSEhI1pRDl8yuLk001netB:pa4ACY80p2B01G
Score

7^/10

upx
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

© 2018-2024

Terms | Privacy