Overview

overview

7

Static

static

3

dridex

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    634aae21f789a5698b0c015ac3f59bb10f8b3ccffeb17aeedad13a301075b23b

  • Size

    7.0MB

  • Sample

    230526-mtgvpafe8x

  • MD5

    639231d7dd5d323bfeadae51467f21e2

  • SHA1

    e8019d37ba0467f7b431e84b0ccc468c63f8a4c3

  • SHA256

    634aae21f789a5698b0c015ac3f59bb10f8b3ccffeb17aeedad13a301075b23b

  • SHA512

    c8cebdc7ee5719e73c5d058623d4baf376d220ac1edf89f9e8352b17b3ae240a2d99f4403bc9b38a20f15a65907ff2b3bd7eb08dbe6ad87da500702f501df822

  • SSDEEP

    98304:ogRUCbYcqd2Zv4l+/iKdnM7Wba4iB8d2LAoBixbrU6+fnwPMQEbLVNipVVS6Z:3LqwmlYm7Wb0B8YL6U/nwPlEbL+p9

Score
7/10
discoverypersistence

Malware Config

Targets

    • Target

      634aae21f789a5698b0c015ac3f59bb10f8b3ccffeb17aeedad13a301075b23b

    • Size

      7.0MB

    • MD5

      639231d7dd5d323bfeadae51467f21e2

    • SHA1

      e8019d37ba0467f7b431e84b0ccc468c63f8a4c3

    • SHA256

      634aae21f789a5698b0c015ac3f59bb10f8b3ccffeb17aeedad13a301075b23b

    • SHA512

      c8cebdc7ee5719e73c5d058623d4baf376d220ac1edf89f9e8352b17b3ae240a2d99f4403bc9b38a20f15a65907ff2b3bd7eb08dbe6ad87da500702f501df822

    • SSDEEP

      98304:ogRUCbYcqd2Zv4l+/iKdnM7Wba4iB8d2LAoBixbrU6+fnwPMQEbLVNipVVS6Z:3LqwmlYm7Wb0B8YL6U/nwPlEbL+p9

    Score
    7/10
    discoverypersistence

    • Executes dropped EXE

    • Adds Run key to start application

      persistence

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

1
T1060

Privilege Escalation

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

Query Registry

1
T1012

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks