Overview

overview

7

Static

static

3

dridex

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    a8de905ba4119cf0bb209c6d0260206eb28f9474d0a7811eff1f8246d43d9263

  • Size

    207KB

  • Sample

    230608-gqnwyadd5s

  • MD5

    3dd98f946656f2580693022a8e1a6cd9

  • SHA1

    ea9db4830ce29bdfda7b7554858f8296abc75ccc

  • SHA256

    a8de905ba4119cf0bb209c6d0260206eb28f9474d0a7811eff1f8246d43d9263

  • SHA512

    5f414c052c93d6bc75bd7a71d1134e4ebd6fad387b771565860a01ccc4efa526c9dd6e44134bb85f7897ad78820d3470d722ded52b9267c75435e8d7427ae9c3

  • SSDEEP

    3072:H/DmgskHbfHN+Pst60p0zuNmnKG7peNMQbuZAIqbey3lfbi:fDmfAfHN+wiuInRexuZAIij

Score
7/10

Malware Config

Targets

    • Target

      a8de905ba4119cf0bb209c6d0260206eb28f9474d0a7811eff1f8246d43d9263

    • Size

      207KB

    • MD5

      3dd98f946656f2580693022a8e1a6cd9

    • SHA1

      ea9db4830ce29bdfda7b7554858f8296abc75ccc

    • SHA256

      a8de905ba4119cf0bb209c6d0260206eb28f9474d0a7811eff1f8246d43d9263

    • SHA512

      5f414c052c93d6bc75bd7a71d1134e4ebd6fad387b771565860a01ccc4efa526c9dd6e44134bb85f7897ad78820d3470d722ded52b9267c75435e8d7427ae9c3

    • SSDEEP

      3072:H/DmgskHbfHN+Pst60p0zuNmnKG7peNMQbuZAIqbey3lfbi:fDmfAfHN+wiuInRexuZAIij

    Score
    7/10

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Scheduled Task

1
T1053

Persistence

Scheduled Task

1
T1053

Privilege Escalation

Scheduled Task

1
T1053

Defense Evasion

Credential Access

Discovery

Query Registry

1
T1012

System Information Discovery

2
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks