Overview

overview

10

Static

static

1

dridex

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    4b664bcadb007b5862b97e11c6f0ba21397b78c7dc5361512c82ff42b4e06a72

  • Size

    4.2MB

  • Sample

    230825-yz8fdaee87

  • MD5

    0f73633551a771f0f0ed9a05e5c875c1

  • SHA1

    4f77354ee40b9d9e26bf024dad6e9be104ed231b

  • SHA256

    4b664bcadb007b5862b97e11c6f0ba21397b78c7dc5361512c82ff42b4e06a72

  • SHA512

    eca92668a1a5611802622dde73ce7edc11f887fe3385812cc1745e90bb704ef55dc406732316e7b13c6e5a6797a469db29bb0a19beb3b46c0bb42cef1a1d0f57

  • SSDEEP

    98304:HGoU4x8bDW9DNb2NlBvz6S8NiWHRpoeh/Ma/EZMT:c4J9NaDBvfMxd/5

Score
10/10
gluptebadropperevasionloader

Malware Config

Targets

    • Target

      4b664bcadb007b5862b97e11c6f0ba21397b78c7dc5361512c82ff42b4e06a72

    • Size

      4.2MB

    • MD5

      0f73633551a771f0f0ed9a05e5c875c1

    • SHA1

      4f77354ee40b9d9e26bf024dad6e9be104ed231b

    • SHA256

      4b664bcadb007b5862b97e11c6f0ba21397b78c7dc5361512c82ff42b4e06a72

    • SHA512

      eca92668a1a5611802622dde73ce7edc11f887fe3385812cc1745e90bb704ef55dc406732316e7b13c6e5a6797a469db29bb0a19beb3b46c0bb42cef1a1d0f57

    • SSDEEP

      98304:HGoU4x8bDW9DNb2NlBvz6S8NiWHRpoeh/Ma/EZMT:c4J9NaDBvfMxd/5

    Score
    10/10
    gluptebadropperevasionloader

    • Glupteba

      Glupteba is a modular loader written in Golang with various components.

      loaderdropperglupteba

    • Glupteba payload

    • Modifies Windows Firewall

      evasion

    • Drops file in System32 directory

    behavioral1

MITRE ATT&CK Enterprise v15

Tasks