Overview

overview

7

Static

static

3

dridex

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    f480c8bed1f4d29a01bd6727c13c2f7f3607c6b39750958239961ef500b8b53e

  • Size

    1.4MB

  • Sample

    231113-blsrfaeh7w

  • MD5

    adce7b9b3b5988f18fc166e15170869d

  • SHA1

    ebfa30df81b413b0bb666c26f32d83cee233ba4c

  • SHA256

    f480c8bed1f4d29a01bd6727c13c2f7f3607c6b39750958239961ef500b8b53e

  • SHA512

    f6a52b63cb252ed15e6e4738f66b27902775aebe0c894bc9f2d2338479588013535353397c911df3d9dadda8287b4e00d83f4259429576012807a2a93b9cb4f6

  • SSDEEP

    24576:1yjzyFCJgEAZQTqsLm2ewIscThGSOYDsC37OgMtoYnYZ+dvqG7v8V32IASEBJY/C:QjgEAZQTqme3xVGyJrOgMtomYSvT7v8N

Score
7/10
paypalpersistencephishing

Malware Config

Targets

    • Target

      f480c8bed1f4d29a01bd6727c13c2f7f3607c6b39750958239961ef500b8b53e

    • Size

      1.4MB

    • MD5

      adce7b9b3b5988f18fc166e15170869d

    • SHA1

      ebfa30df81b413b0bb666c26f32d83cee233ba4c

    • SHA256

      f480c8bed1f4d29a01bd6727c13c2f7f3607c6b39750958239961ef500b8b53e

    • SHA512

      f6a52b63cb252ed15e6e4738f66b27902775aebe0c894bc9f2d2338479588013535353397c911df3d9dadda8287b4e00d83f4259429576012807a2a93b9cb4f6

    • SSDEEP

      24576:1yjzyFCJgEAZQTqsLm2ewIscThGSOYDsC37OgMtoYnYZ+dvqG7v8V32IASEBJY/C:QjgEAZQTqme3xVGyJrOgMtomYSvT7v8N

    Score
    7/10
    paypalpersistencephishing

    • Executes dropped EXE

    • Adds Run key to start application

      persistence

    • AutoIT Executable

      AutoIT scripts compiled to PE executables.

    • Detected potential entity reuse from brand paypal.

      phishingpaypal
    behavioral1

MITRE ATT&CK Enterprise v15

Tasks