Overview

overview

7

Static

static

3

dridex

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    d810935d211ebf0342eb9a51c0d63ea833a164f1dcf514c2a0a8097dba95816c

  • Size

    6.9MB

  • Sample

    231210-zmsptscbfn

  • MD5

    f490bd5ca4764e57e6070be0298c5190

  • SHA1

    f4d50b2a52b5f1e5ea9abaf26baa96bdc9fefb5e

  • SHA256

    d810935d211ebf0342eb9a51c0d63ea833a164f1dcf514c2a0a8097dba95816c

  • SHA512

    22f7ebc477d59a37481977a59b85703b497c5f6409fe84c0a9612ccf0a3bbdd3179821dbad979f1da04424f4f306ca66e8a551e6fe0b84fabee381f9daaa146c

  • SSDEEP

    196608:xxnTNzjsOzc7TGHscDgcXbIdslX38dgFYJzj:nNztzQlcDPXus98d9Jzj

Score
7/10
discovery

Malware Config

Targets

    • Target

      d810935d211ebf0342eb9a51c0d63ea833a164f1dcf514c2a0a8097dba95816c

    • Size

      6.9MB

    • MD5

      f490bd5ca4764e57e6070be0298c5190

    • SHA1

      f4d50b2a52b5f1e5ea9abaf26baa96bdc9fefb5e

    • SHA256

      d810935d211ebf0342eb9a51c0d63ea833a164f1dcf514c2a0a8097dba95816c

    • SHA512

      22f7ebc477d59a37481977a59b85703b497c5f6409fe84c0a9612ccf0a3bbdd3179821dbad979f1da04424f4f306ca66e8a551e6fe0b84fabee381f9daaa146c

    • SSDEEP

      196608:xxnTNzjsOzc7TGHscDgcXbIdslX38dgFYJzj:nNztzQlcDPXus98d9Jzj

    Score
    7/10
    discovery

    • Executes dropped EXE

    • Loads dropped DLL

    • Unexpected DNS network traffic destination

      Network traffic to other servers than the configured DNS servers was detected on the DNS port.

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral1

MITRE ATT&CK Enterprise v15

Tasks