Overview

overview

10

Static

static

1

dridex

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    fedafb7544cee0af557257f7fff18b1e7219540f24b059e2f532326a2650ebc9

  • Size

    4.1MB

  • Sample

    231013-p93s7shh5v

  • MD5

    0e9a9ad0e4ebd15e6071e303c58b0671

  • SHA1

    885abde3076c283a01a285909a3e64f9a9d3db56

  • SHA256

    fedafb7544cee0af557257f7fff18b1e7219540f24b059e2f532326a2650ebc9

  • SHA512

    16b404898636e83261a762af81383b52451336a757e5ddf28aebcf1c868a1d679f6173dafde78925c5574581a92ec96c153e868aa0fad38aab1fb48bfa97f14d

  • SSDEEP

    98304:3lhp/+MAY8LSBetbsJnYPJay0ram2uVyHV/vsKO4IVa8TY/jpHwrG:3lT/+M2+BeVsJYPms9vsd3Va8M/jpL

Score
10/10
gluptebadropperevasionloader

Malware Config

Targets

    • Target

      fedafb7544cee0af557257f7fff18b1e7219540f24b059e2f532326a2650ebc9

    • Size

      4.1MB

    • MD5

      0e9a9ad0e4ebd15e6071e303c58b0671

    • SHA1

      885abde3076c283a01a285909a3e64f9a9d3db56

    • SHA256

      fedafb7544cee0af557257f7fff18b1e7219540f24b059e2f532326a2650ebc9

    • SHA512

      16b404898636e83261a762af81383b52451336a757e5ddf28aebcf1c868a1d679f6173dafde78925c5574581a92ec96c153e868aa0fad38aab1fb48bfa97f14d

    • SSDEEP

      98304:3lhp/+MAY8LSBetbsJnYPJay0ram2uVyHV/vsKO4IVa8TY/jpHwrG:3lT/+M2+BeVsJYPms9vsd3Va8M/jpL

    Score
    10/10
    gluptebadropperevasionloader

    • Glupteba

      Glupteba is a modular loader written in Golang with various components.

      loaderdropperglupteba

    • Glupteba payload

    • Modifies Windows Firewall

      evasion

    • Drops file in System32 directory

    behavioral1

MITRE ATT&CK Enterprise v15

Tasks