Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    741155854786e7c4184a20f7f58cc34e

  • Size

    184KB

  • Sample

    231222-gs4p6scch4

  • MD5

    741155854786e7c4184a20f7f58cc34e

  • SHA1

    2ef218a4a8b622a49b747b8c29cf8ac7fe28bb6f

  • SHA256

    edab7c43f27e58e898ecfa5e10cc600f459e89996fa6a5b87901f67fcb4ace8a

  • SHA512

    0ad4afe3cf592cbd8e711e29ede83d34ee4596d38192e88d50b05fdf1a10bfdaa7eddf650ee70cb38797d88b1d92839a8a4c242810597c9922b7dc9652fed02f

  • SSDEEP

    3072:LgkQz1PuOprc+kq6VNOe3qbarVEpZlcbBacS9nOdgjdA4l:OPFkq6zOe5ilSanOYd

Malware Config

Extracted

Family

dridex

Botnet

22201

C2

103.75.201.2:443

158.223.1.108:6225

165.22.28.242:4664

rc4.plain
rc4.plain

Targets

    • Target

      741155854786e7c4184a20f7f58cc34e

    • Size

      184KB

    • MD5

      741155854786e7c4184a20f7f58cc34e

    • SHA1

      2ef218a4a8b622a49b747b8c29cf8ac7fe28bb6f

    • SHA256

      edab7c43f27e58e898ecfa5e10cc600f459e89996fa6a5b87901f67fcb4ace8a

    • SHA512

      0ad4afe3cf592cbd8e711e29ede83d34ee4596d38192e88d50b05fdf1a10bfdaa7eddf650ee70cb38797d88b1d92839a8a4c242810597c9922b7dc9652fed02f

    • SSDEEP

      3072:LgkQz1PuOprc+kq6VNOe3qbarVEpZlcbBacS9nOdgjdA4l:OPFkq6zOe5ilSanOYd

    • Dridex

      Dridex(known as Bugat/Cridex) is a form of malware that specializes in stealing bank credentials.

    • Dridex Loader

      Detects Dridex both x86 and x64 loader in memory.

MITRE ATT&CK Matrix

Tasks