dridex | bf3130e116fd5d9ae43a09831d59f66acee6cb0de1d657e80e711a2bb6397408 | Triage

Submit
Reports

Overview

overview

Static

static

3

ZvdFNlHdickpenis.dll

windows7-x64

ZvdFNlHdickpenis.dll

windows10-2004-x64

Sharing

General

Target

ZvdFNlHdickpenis.bin
Size

524KB
Sample

230630-py4alacc44
MD5

cc629318af63c61b89e0047c3799b3b5
SHA1

410c533b229f6abefe72619451c248f107fff846
SHA256

bf3130e116fd5d9ae43a09831d59f66acee6cb0de1d657e80e711a2bb6397408
SHA512

3dcc446841757572df318bfc50a3860aecf16c17cb2f1b788409517bd51234de2d82efb5072f8c8138123f53972af49bf9e7016c330d7ae114fba3b4dfd33940
SSDEEP

6144:8KMImhktm7mnmvetmzK/kxwv4Zm7mREqZzdazdULd54f3X0kdVtL8faGAPlX:89hXAg5aX0CL8fI

Score

10^/10

dridex 22201 botnet loader

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

ZvdFNlHdickpenis.dll

Resource

win7-20230621-en

dridex 22201 botnet loader

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

ZvdFNlHdickpenis.dll

Resource

win10v2004-20230621-en

dridex 22201 botnet loader

windows10-2004-x64

4 signatures

150 seconds

Malware Config

Extracted

Family

dridex

Botnet

22201

C2

104.36.167.47:443

188.40.48.93:4664

162.241.33.132:9217

217.160.5.104:593

rc4.plain

rc4.plain

Targets

- Target
  
  ZvdFNlHdickpenis.bin
- Size
  
  524KB
- MD5
  
  cc629318af63c61b89e0047c3799b3b5
- SHA1
  
  410c533b229f6abefe72619451c248f107fff846
- SHA256
  
  bf3130e116fd5d9ae43a09831d59f66acee6cb0de1d657e80e711a2bb6397408
- SHA512
  
  3dcc446841757572df318bfc50a3860aecf16c17cb2f1b788409517bd51234de2d82efb5072f8c8138123f53972af49bf9e7016c330d7ae114fba3b4dfd33940
- SSDEEP
  
  6144:8KMImhktm7mnmvetmzK/kxwv4Zm7mREqZzdazdULd54f3X0kdVtL8faGAPlX:89hXAg5aX0CL8fI
Score

10^/10

dridex 22201 botnet loader
- Dridex
  Dridex(known as Bugat/Cridex) is a form of malware that specializes in stealing bank credentials.
  botnet dridex
- Dridex Loader
  Detects Dridex both x86 and x64 loader in memory.
  botnet loader
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

dridex22201botnetloader

behavioral2

dridex22201botnetloader

© 2018-2024

Terms | Privacy