Overview

overview

7

Static

static

3

dridex

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    52e0c14cf4677b286206eba4e4a7d4612fb8ec39f1c7c16539be3ff51645b7dd

  • Size

    5.6MB

  • Sample

    231113-hcnjpabb93

  • MD5

    df704ff170059b1b096ff0c72daa0dd0

  • SHA1

    fe2c243ae5af46e8c048a7af5049f2dae7085a06

  • SHA256

    52e0c14cf4677b286206eba4e4a7d4612fb8ec39f1c7c16539be3ff51645b7dd

  • SHA512

    8aec13e108c032a11cc937cac5dd2643074672140e703bff4719381c1e782f3614ad4053c54a1bb69edeb8aee31f849b7d594ca24bffee99ac4b969dcee6a50c

  • SSDEEP

    98304:QiRmxZFsM4kxzDcT+GcY437KvDwEHuujlsaSzsC0p43MpQdZ9nc+fsCb+oSBAON6:JRm1syxacY48eda2TMpQdZ9nc+fyhNjG

Score
7/10
discovery

Malware Config

Targets

    • Target

      52e0c14cf4677b286206eba4e4a7d4612fb8ec39f1c7c16539be3ff51645b7dd

    • Size

      5.6MB

    • MD5

      df704ff170059b1b096ff0c72daa0dd0

    • SHA1

      fe2c243ae5af46e8c048a7af5049f2dae7085a06

    • SHA256

      52e0c14cf4677b286206eba4e4a7d4612fb8ec39f1c7c16539be3ff51645b7dd

    • SHA512

      8aec13e108c032a11cc937cac5dd2643074672140e703bff4719381c1e782f3614ad4053c54a1bb69edeb8aee31f849b7d594ca24bffee99ac4b969dcee6a50c

    • SSDEEP

      98304:QiRmxZFsM4kxzDcT+GcY437KvDwEHuujlsaSzsC0p43MpQdZ9nc+fsCb+oSBAON6:JRm1syxacY48eda2TMpQdZ9nc+fyhNjG

    Score
    7/10
    discovery

    • Executes dropped EXE

    • Loads dropped DLL

    • Unexpected DNS network traffic destination

      Network traffic to other servers than the configured DNS servers was detected on the DNS port.

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral1

MITRE ATT&CK Enterprise v15

Tasks