d020ae8bd8a1175068741173979993ce8e62aa89877f9f953be4a8775aa9e96a | Triage

Submit
Reports

Overview

overview

7

Static

static

7

dridex

windows10-2004-x64

7

Sharing

General

Target

d020ae8bd8a1175068741173979993ce8e62aa89877f9f953be4a8775aa9e96a
Size

277KB
Sample

230312-r5myasgc3v
MD5

5642182adb25fe5e796b7971aa618501
SHA1

fd22ba4c0d09ad9e2473214e53c0dae27a70c035
SHA256

d020ae8bd8a1175068741173979993ce8e62aa89877f9f953be4a8775aa9e96a
SHA512

508de35db4db2daa4e1a354a290cd89ae92dcc25cca4e5234cbb263960d2656f9b636e0b5a68bbc2bdbcd8d6c3f72808c41df052995b3dd3b68d82f77bdf4a15
SSDEEP

6144:wXzKdNY49u8rVluw+ASgv3IXNP8uM01netK:va4AGSgvZ01R

Score

7^/10

upx

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

d020ae8bd8a1175068741173979993ce8e62aa89877f9f953be4a8775aa9e96a.exe

Resource

win10v2004-20230220-en

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  d020ae8bd8a1175068741173979993ce8e62aa89877f9f953be4a8775aa9e96a
- Size
  
  277KB
- MD5
  
  5642182adb25fe5e796b7971aa618501
- SHA1
  
  fd22ba4c0d09ad9e2473214e53c0dae27a70c035
- SHA256
  
  d020ae8bd8a1175068741173979993ce8e62aa89877f9f953be4a8775aa9e96a
- SHA512
  
  508de35db4db2daa4e1a354a290cd89ae92dcc25cca4e5234cbb263960d2656f9b636e0b5a68bbc2bdbcd8d6c3f72808c41df052995b3dd3b68d82f77bdf4a15
- SSDEEP
  
  6144:wXzKdNY49u8rVluw+ASgv3IXNP8uM01netK:va4AGSgvZ01R
Score

7^/10

upx
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

© 2018-2025

Terms | Privacy