30db836993a6d819e70782183a3b6a641bb459f09bbaecec44909e5bd36cc74a | Triage

Submit
Reports

Overview

overview

7

Static

static

1

dridex

windows10-1703-x64

7

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

30db836993a6d819e70782183a3b6a641bb459f09bbaecec44909e5bd36cc74a.exe

Resource

win10-20230220-en

windows10-1703-x64

4 signatures

150 seconds

General

Target

30db836993a6d819e70782183a3b6a641bb459f09bbaecec44909e5bd36cc74a
Size

4.6MB
MD5

ed9ef9e810b8cb6aef247b6185bb5890
SHA1

4748052b7f0afea80fe46251cc57ad03ae8a9bec
SHA256

30db836993a6d819e70782183a3b6a641bb459f09bbaecec44909e5bd36cc74a
SHA512

5ee2a61e35260104c403d07ebb2f40121d9f4b945f49d0c26bea82673b79120c2d6d8b30a2436661501b621be5e73b56b81b6ae9ab658598627ad773db2b2e13
SSDEEP

98304:7P1L6wld10c10QckzHmWoL6zCvlp+LUBjitui3o4cXEtv3KgwX:RL10IbxHmW5zCNpLeMitKU3Kgw

Score

1^/10

Malware Config

Signatures

Files

30db836993a6d819e70782183a3b6a641bb459f09bbaecec44909e5bd36cc74a
.exe windows x64

6759e4028b9f8d1e0b32ee5a70a280d9

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

kernel32

CopyFileA
GetSystemTimeAsFileTime
HeapAlloc
HeapFree
ExitProcess
LoadLibraryA
GetModuleHandleA
GetProcAddress

user32

CloseClipboard

advapi32

RegCreateKeyExA

Sections

.text
Size: - Virtual size: 3.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: - Virtual size: 105KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

_RDATA
Size: - Virtual size: 244B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

JHT%REGF
Size: - Virtual size: 2.6MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

JHT%REGF
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

JHT%REGF
Size: 4.5MB - Virtual size: 4.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 27KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy