2c64d47928d456eba1913a0d1389c7f673449c685f9160158b94674e24b013b4 | Triage

Submit
Reports

Overview

overview

Static

static

1

dridex

windows10-1703-x64

Sharing

General

Target

2c64d47928d456eba1913a0d1389c7f673449c685f9160158b94674e24b013b4
Size

1.1MB
Sample

230418-ry63laca69
MD5

09c74acfa3120f007de1985be0436bb4
SHA1

362e0a2cca919c63a088b19cd08b4d456f29007f
SHA256

2c64d47928d456eba1913a0d1389c7f673449c685f9160158b94674e24b013b4
SHA512

0b22747174e1caa8c6301458f5b71c46785cd90a0a6f615f535e8c03afef4c62f8fc284dd31a87d58d1285845917ef5142ac4475b134f2cbe94c6cc8d9041dda
SSDEEP

24576:DyfzPgNCEbQZCSOWnWR3GD+9ZmIUMeH7Qj0mt:WfzP6C0QZCknWZk+TmOEQQ

Score

10^/10

discovery evasion persistence spyware stealer trojan

Static task

static1

Behavioral task

behavioral1

Sample

2c64d47928d456eba1913a0d1389c7f673449c685f9160158b94674e24b013b4.exe

Resource

win10-20230220-en

discovery evasion persistence spyware stealer trojan

windows10-1703-x64

11 signatures

150 seconds

Malware Config

Targets

- Target
  
  2c64d47928d456eba1913a0d1389c7f673449c685f9160158b94674e24b013b4
- Size
  
  1.1MB
- MD5
  
  09c74acfa3120f007de1985be0436bb4
- SHA1
  
  362e0a2cca919c63a088b19cd08b4d456f29007f
- SHA256
  
  2c64d47928d456eba1913a0d1389c7f673449c685f9160158b94674e24b013b4
- SHA512
  
  0b22747174e1caa8c6301458f5b71c46785cd90a0a6f615f535e8c03afef4c62f8fc284dd31a87d58d1285845917ef5142ac4475b134f2cbe94c6cc8d9041dda
- SSDEEP
  
  24576:DyfzPgNCEbQZCSOWnWR3GD+9ZmIUMeH7Qj0mt:WfzP6C0QZCknWZk+TmOEQQ
Score

10^/10

discovery evasion persistence spyware stealer trojan
- Modifies Windows Defender Real-time Protection settings
  evasion trojan
- Executes dropped EXE
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Windows security modification
  evasion trojan
- Accesses cryptocurrency files/wallets, possible credential harvesting
  spyware
- Adds Run key to start application
  persistence
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Modify Existing Service

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Disabling Security Tools

Modify Registry

Credential Access

Credentials in Files

Discovery

Query Registry

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryevasionpersistencespywarestealertrojan

© 2018-2025

Terms | Privacy

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.