e8f1b187cef74b0f329f5ec21e70ae94fe815a6d5c60b497561f61ef4ea29a0b | Triage

Submit
Reports

Overview

overview

Static

static

3

dridex

windows10-2004-x64

Sharing

General

Target

e8f1b187cef74b0f329f5ec21e70ae94fe815a6d5c60b497561f61ef4ea29a0b
Size

500KB
Sample

230607-fb4s6sgh38
MD5

a643aa1dd8357db887c044529add61e6
SHA1

296eac74b1a7d80666770f5b96640b2e2114705b
SHA256

e8f1b187cef74b0f329f5ec21e70ae94fe815a6d5c60b497561f61ef4ea29a0b
SHA512

db7afcf60f5144a9c30587af2f032e3976d60d0cce29a050f7138407331a1b77dd31631c5541f302bfebcd9f4e5f67236c8bb03df4844290897d0b212f572e41
SSDEEP

12288:aYqncXvK04BdjQWSBgYMKjwoGlQL/wyGhp:JDXh8QvBg36K

Score

10^/10

collection

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

e8f1b187cef74b0f329f5ec21e70ae94fe815a6d5c60b497561f61ef4ea29a0b.exe

Resource

win10v2004-20230220-en

windows10-2004-x64

8 signatures

150 seconds

Malware Config

Targets

- Target
  
  e8f1b187cef74b0f329f5ec21e70ae94fe815a6d5c60b497561f61ef4ea29a0b
- Size
  
  500KB
- MD5
  
  a643aa1dd8357db887c044529add61e6
- SHA1
  
  296eac74b1a7d80666770f5b96640b2e2114705b
- SHA256
  
  e8f1b187cef74b0f329f5ec21e70ae94fe815a6d5c60b497561f61ef4ea29a0b
- SHA512
  
  db7afcf60f5144a9c30587af2f032e3976d60d0cce29a050f7138407331a1b77dd31631c5541f302bfebcd9f4e5f67236c8bb03df4844290897d0b212f572e41
- SSDEEP
  
  12288:aYqncXvK04BdjQWSBgYMKjwoGlQL/wyGhp:JDXh8QvBg36K
Score

10^/10

collection
- Suspicious use of NtCreateUserProcessOtherParentProcess
- Accesses Microsoft Outlook profiles
  collection
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Email Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

© 2018-2025

Terms | Privacy