Overview

overview

10

Static

static

1

dridex

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    c1ed34e9ee4eaf8e19ee33488ec376aae486611938390925aa1323fb35830f80

  • Size

    121KB

  • Sample

    230608-gsrevach26

  • MD5

    f0a654df43d3540c7c5a89af5646dcaa

  • SHA1

    af7f016785d5c769a33df1de7314dc9ac0ef2654

  • SHA256

    c1ed34e9ee4eaf8e19ee33488ec376aae486611938390925aa1323fb35830f80

  • SHA512

    5724451a50ff94896a6a14c754c8c15db80ebeec3878ceea782c95673ad4a3200ca10a61e1e70fd26a914bd1fa58626c9b2e14e58d1d70860ff40436eda4a043

  • SSDEEP

    3072:L9QLdsON8xxwaTq29L5lh9+LfWv98oyhuWVFrag1shbfrtvx:5QLvN8VTHh9jWVFmZhTrt

Score
10/10
evasiontrojan

Malware Config

Targets

    • Target

      c1ed34e9ee4eaf8e19ee33488ec376aae486611938390925aa1323fb35830f80

    • Size

      121KB

    • MD5

      f0a654df43d3540c7c5a89af5646dcaa

    • SHA1

      af7f016785d5c769a33df1de7314dc9ac0ef2654

    • SHA256

      c1ed34e9ee4eaf8e19ee33488ec376aae486611938390925aa1323fb35830f80

    • SHA512

      5724451a50ff94896a6a14c754c8c15db80ebeec3878ceea782c95673ad4a3200ca10a61e1e70fd26a914bd1fa58626c9b2e14e58d1d70860ff40436eda4a043

    • SSDEEP

      3072:L9QLdsON8xxwaTq29L5lh9+LfWv98oyhuWVFrag1shbfrtvx:5QLvN8VTHh9jWVFmZhTrt

    Score
    10/10
    evasiontrojan

    • Modifies Windows Defender Real-time Protection settings

      evasiontrojan

    • Suspicious use of SetThreadContext

    behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Modify Existing Service

1
T1031

Privilege Escalation

Defense Evasion

Modify Registry

1
T1112

Disabling Security Tools

1
T1089

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks