General

  • Target

    c98ea7e2846ae72e312e386de7e6817b

  • Size

    1.7MB

  • Sample

    231222-r4btmsfaa4

  • MD5

    c98ea7e2846ae72e312e386de7e6817b

  • SHA1

    f1d1f942b91929981c16570f57362e2d61133df3

  • SHA256

    b55527715bb69b1c4c0582a949f10a6cec310643664fff4239749b8610b05097

  • SHA512

    e661452dbd4c2b8c63d92fa8aa543f3b684b4dc0d573928a409f407ffa64e4e8820a65c19964206854f1ae7848fdae85a4d880ee9e8500cc8d7b1ba05e9fcc98

  • SSDEEP

    12288:OVI0W/TtlPLfJCm3WIYxJ9yK5IQ9PElOlidGAWilgm5Qq0nB6wtt4AenZ1:TfP7fWsK5z9A+WGAW+V5SB6Ct4bnb

Malware Config

Targets

    • Target

      c98ea7e2846ae72e312e386de7e6817b

    • Size

      1.7MB

    • MD5

      c98ea7e2846ae72e312e386de7e6817b

    • SHA1

      f1d1f942b91929981c16570f57362e2d61133df3

    • SHA256

      b55527715bb69b1c4c0582a949f10a6cec310643664fff4239749b8610b05097

    • SHA512

      e661452dbd4c2b8c63d92fa8aa543f3b684b4dc0d573928a409f407ffa64e4e8820a65c19964206854f1ae7848fdae85a4d880ee9e8500cc8d7b1ba05e9fcc98

    • SSDEEP

      12288:OVI0W/TtlPLfJCm3WIYxJ9yK5IQ9PElOlidGAWilgm5Qq0nB6wtt4AenZ1:TfP7fWsK5z9A+WGAW+V5SB6Ct4bnb

    • Dridex

      Dridex(known as Bugat/Cridex) is a form of malware that specializes in stealing bank credentials.

    • Dridex Shellcode

      Detects Dridex Payload shellcode injected in Explorer process.

    • Checks whether UAC is enabled

MITRE ATT&CK Enterprise v15

Tasks