Overview

overview

7

Static

static

3

dridex

windows10-1703-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    9aa15761d18403a25299ce05cd050f08ef4d767f90c9e711b736ffd2bd877ac7

  • Size

    5.6MB

  • Sample

    231106-qmp49sbc9x

  • MD5

    23714ea44629dcf8898ec87d045b7f8a

  • SHA1

    7919518372fb4b78869d145fbe2ec821afc25ad4

  • SHA256

    9aa15761d18403a25299ce05cd050f08ef4d767f90c9e711b736ffd2bd877ac7

  • SHA512

    631e6c36e31c3c791779195ffee8e5cc0304e99ac179b6670817f6ead5e72c30470b40b685f7e905ef6c9078f1e9e5f1ed50f35a29d61744f9a0b72863f5d2a8

  • SSDEEP

    98304:BiRmxZFsM4kxzDcT+GcY437KvDwEHuujlsaSzsC0p43MpQdZ9nc+fsCb+oSBAON6:ARm1syxacY48eda2TMpQdZ9nc+fyhNjG

Score
7/10
discovery

Malware Config

Targets

    • Target

      9aa15761d18403a25299ce05cd050f08ef4d767f90c9e711b736ffd2bd877ac7

    • Size

      5.6MB

    • MD5

      23714ea44629dcf8898ec87d045b7f8a

    • SHA1

      7919518372fb4b78869d145fbe2ec821afc25ad4

    • SHA256

      9aa15761d18403a25299ce05cd050f08ef4d767f90c9e711b736ffd2bd877ac7

    • SHA512

      631e6c36e31c3c791779195ffee8e5cc0304e99ac179b6670817f6ead5e72c30470b40b685f7e905ef6c9078f1e9e5f1ed50f35a29d61744f9a0b72863f5d2a8

    • SSDEEP

      98304:BiRmxZFsM4kxzDcT+GcY437KvDwEHuujlsaSzsC0p43MpQdZ9nc+fsCb+oSBAON6:ARm1syxacY48eda2TMpQdZ9nc+fyhNjG

    Score
    7/10
    discovery

    • Executes dropped EXE

    • Loads dropped DLL

    • Unexpected DNS network traffic destination

      Network traffic to other servers than the configured DNS servers was detected on the DNS port.

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral1

MITRE ATT&CK Enterprise v15

Tasks