General
-
Target
de4088f932934d5fc134cf410136d81f
-
Size
620KB
-
Sample
231220-tawm3acefp
-
MD5
de4088f932934d5fc134cf410136d81f
-
SHA1
b03d3d4f2ac2752b58fb2b586dda240a647fb319
-
SHA256
0d002228f1c316bbeb0df23eb1af59353764670a4573520b6756fe1b100e2447
-
SHA512
6f2ca492c66f028e561e178c16ffaa7433b73284783ee40b107cb55586e65c7410d5c5336f718dc8b5d70e19c2c3f4788912eca32e006c6570ba476542d4e093
-
SSDEEP
12288:UE6rSiA4qbs3j09TMmonCh5atbz9+eoQoUZpDd7Da1nX9y1BO/zFZx:aeKn3j0dMZnCutz4zI5xDwXUbm
Static task
static1
Behavioral task
behavioral1
Sample
de4088f932934d5fc134cf410136d81f.dll
Resource
win7-20231129-en
Malware Config
Extracted
dridex
10222
174.128.245.202:443
51.83.3.52:13786
69.64.50.41:6602
Targets
-
-
Target
de4088f932934d5fc134cf410136d81f
-
Size
620KB
-
MD5
de4088f932934d5fc134cf410136d81f
-
SHA1
b03d3d4f2ac2752b58fb2b586dda240a647fb319
-
SHA256
0d002228f1c316bbeb0df23eb1af59353764670a4573520b6756fe1b100e2447
-
SHA512
6f2ca492c66f028e561e178c16ffaa7433b73284783ee40b107cb55586e65c7410d5c5336f718dc8b5d70e19c2c3f4788912eca32e006c6570ba476542d4e093
-
SSDEEP
12288:UE6rSiA4qbs3j09TMmonCh5atbz9+eoQoUZpDd7Da1nX9y1BO/zFZx:aeKn3j0dMZnCutz4zI5xDwXUbm
-
Blocklisted process makes network request
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-