Overview

overview

10

Static

static

3

aca8927996...ca.dll

windows7-x64

10

aca8927996...ca.dll

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    aca8927996a4d591c16162b84a4a09ca

  • Size

    184KB

  • Sample

    231222-q23znsebf6

  • MD5

    aca8927996a4d591c16162b84a4a09ca

  • SHA1

    1530f49b6675ab7a84a1d50a8e5e9113acc29802

  • SHA256

    68843237aa3cfac06e0efd55e445a0197ddb119bca4e7ffc0ae6abf8861fa428

  • SHA512

    7e8085376e13be16b30d84de7de5f45879bbe5ed9ab4e104a5b112bcf8793133ef5d69699674cf74902463e06be8a4eb3c8dac354757858fbb12f15e03206ce2

  • SSDEEP

    3072:ngkQz1PuOprc+kq6VNOe3qbarVEpZlcbBacS9nOdgpdA4l:iPFkq6zOe5ilSanOWd

Score
10/10
dridex22201botnetloader

Malware Config

Extracted

Family

dridex

Botnet

22201

C2

103.75.201.2:443

158.223.1.108:6225

165.22.28.242:4664
rc4.plain
rc4.plain

Targets

    • Target

      aca8927996a4d591c16162b84a4a09ca

    • Size

      184KB

    • MD5

      aca8927996a4d591c16162b84a4a09ca

    • SHA1

      1530f49b6675ab7a84a1d50a8e5e9113acc29802

    • SHA256

      68843237aa3cfac06e0efd55e445a0197ddb119bca4e7ffc0ae6abf8861fa428

    • SHA512

      7e8085376e13be16b30d84de7de5f45879bbe5ed9ab4e104a5b112bcf8793133ef5d69699674cf74902463e06be8a4eb3c8dac354757858fbb12f15e03206ce2

    • SSDEEP

      3072:ngkQz1PuOprc+kq6VNOe3qbarVEpZlcbBacS9nOdgpdA4l:iPFkq6zOe5ilSanOWd

    Score
    10/10
    dridex22201botnetloader

    • Dridex

      Dridex(known as Bugat/Cridex) is a form of malware that specializes in stealing bank credentials.

      botnetdridex

    • Dridex Loader

      Detects Dridex both x86 and x64 loader in memory.

      botnetloader
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks