Overview

overview

7

Static

static

3

dridex

windows10-1703-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    e26ad6af19a57127a5f6fafb37e1bb65935c6ecb5c0f788614e14a713b5ec1a9

  • Size

    2.5MB

  • Sample

    231126-nwwmasha79

  • MD5

    1d21147d8a8faccfb6e521dce3aa1722

  • SHA1

    205647cba309b0fb94a5eaad9393609ba9266191

  • SHA256

    e26ad6af19a57127a5f6fafb37e1bb65935c6ecb5c0f788614e14a713b5ec1a9

  • SHA512

    ce0a4eec3a298b6c812fbd896ca6d4500fd88a37d89f0f64f04b8f584ffeab2080d6f01f950b776d724edc0fe5224f1abd471d1c4f78bdcd064020e028df9a1c

  • SSDEEP

    49152:32bERBctaqluW8thU0kW2LTxMlR6bJl7Z/EqFtP9E5gWwXo4MLVH4RY0E:mO0lqtWJZMlkJlNdVE5nwCVYlE

Score
7/10
discovery

Malware Config

Targets

    • Target

      e26ad6af19a57127a5f6fafb37e1bb65935c6ecb5c0f788614e14a713b5ec1a9

    • Size

      2.5MB

    • MD5

      1d21147d8a8faccfb6e521dce3aa1722

    • SHA1

      205647cba309b0fb94a5eaad9393609ba9266191

    • SHA256

      e26ad6af19a57127a5f6fafb37e1bb65935c6ecb5c0f788614e14a713b5ec1a9

    • SHA512

      ce0a4eec3a298b6c812fbd896ca6d4500fd88a37d89f0f64f04b8f584ffeab2080d6f01f950b776d724edc0fe5224f1abd471d1c4f78bdcd064020e028df9a1c

    • SSDEEP

      49152:32bERBctaqluW8thU0kW2LTxMlR6bJl7Z/EqFtP9E5gWwXo4MLVH4RY0E:mO0lqtWJZMlkJlNdVE5nwCVYlE

    Score
    7/10
    discovery

    • Executes dropped EXE

    • Loads dropped DLL

    • Unexpected DNS network traffic destination

      Network traffic to other servers than the configured DNS servers was detected on the DNS port.

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral1

MITRE ATT&CK Enterprise v15

Tasks