Overview

overview

7

Static

static

3

dridex

windows10-1703-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    b8b87fd27949f3b50153c63b73d47b5f0ea7b4d40579a1bafdc7d65a77f69da8

  • Size

    5.2MB

  • Sample

    231124-ew6mtsfc92

  • MD5

    0334a3d5bcb7b1dab0b58ebef9b21e7a

  • SHA1

    cef4f46d1ad1fdd094e49d76b4040dd759e8a3dd

  • SHA256

    b8b87fd27949f3b50153c63b73d47b5f0ea7b4d40579a1bafdc7d65a77f69da8

  • SHA512

    1f71d2e5402e9c2491029f1182dcdc61c438844bcd687abd681208f9e8ba1000a1859452b0adc553e4e175a2440ff46e58c99958096b4a79f9ec3f0a86ea211c

  • SSDEEP

    98304:kchHMKyDyc70SwAvO01JgBixtqMhlE4f+Ue/czLiRZvcFqhblsXlwagEblE:7y3l80DBl5f+2QvQus1zgCu

Score
7/10
discovery

Malware Config

Targets

    • Target

      b8b87fd27949f3b50153c63b73d47b5f0ea7b4d40579a1bafdc7d65a77f69da8

    • Size

      5.2MB

    • MD5

      0334a3d5bcb7b1dab0b58ebef9b21e7a

    • SHA1

      cef4f46d1ad1fdd094e49d76b4040dd759e8a3dd

    • SHA256

      b8b87fd27949f3b50153c63b73d47b5f0ea7b4d40579a1bafdc7d65a77f69da8

    • SHA512

      1f71d2e5402e9c2491029f1182dcdc61c438844bcd687abd681208f9e8ba1000a1859452b0adc553e4e175a2440ff46e58c99958096b4a79f9ec3f0a86ea211c

    • SSDEEP

      98304:kchHMKyDyc70SwAvO01JgBixtqMhlE4f+Ue/czLiRZvcFqhblsXlwagEblE:7y3l80DBl5f+2QvQus1zgCu

    Score
    7/10
    discovery

    • Executes dropped EXE

    • Loads dropped DLL

    • Unexpected DNS network traffic destination

      Network traffic to other servers than the configured DNS servers was detected on the DNS port.

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral1

MITRE ATT&CK Enterprise v15

Tasks