Overview

overview

7

Static

static

7

dridex

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    13ba9542e9ef2c0d84c2e1200fefb8291526949d92d9ffc134e454adb0bca362

  • Size

    266KB

  • Sample

    230919-hlb71shd62

  • MD5

    7bfc8b593c28a8d5b6ac3aef3fcbf9ae

  • SHA1

    ee2ec206ea71f6e4b7618d9c5339a010d65d7b57

  • SHA256

    13ba9542e9ef2c0d84c2e1200fefb8291526949d92d9ffc134e454adb0bca362

  • SHA512

    498c3af7b26f8b86bf147cf39c5feb3cfdbaae72332f42e6b535b7a2d3235b15d60032e01c7672b7a4663c271d5bd7f8aa86d9b4b3b09bf2dfa1dbf5bd88d9cc

  • SSDEEP

    3072:ONXEGZJWhfNFC4S60+XoLczrVmXOhUw/X1HjS+/fbC8DcGs41H01ne4PK:cXzKdNY49u8rVHuw5jLHu8DcGp01net

Score
7/10
upx

Malware Config

Targets

    • Target

      13ba9542e9ef2c0d84c2e1200fefb8291526949d92d9ffc134e454adb0bca362

    • Size

      266KB

    • MD5

      7bfc8b593c28a8d5b6ac3aef3fcbf9ae

    • SHA1

      ee2ec206ea71f6e4b7618d9c5339a010d65d7b57

    • SHA256

      13ba9542e9ef2c0d84c2e1200fefb8291526949d92d9ffc134e454adb0bca362

    • SHA512

      498c3af7b26f8b86bf147cf39c5feb3cfdbaae72332f42e6b535b7a2d3235b15d60032e01c7672b7a4663c271d5bd7f8aa86d9b4b3b09bf2dfa1dbf5bd88d9cc

    • SSDEEP

      3072:ONXEGZJWhfNFC4S60+XoLczrVmXOhUw/X1HjS+/fbC8DcGs41H01ne4PK:cXzKdNY49u8rVHuw5jLHu8DcGp01net

    Score
    7/10
    upx

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

1
T1012

System Information Discovery

2
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks