General

  • Target

    1e3796d3b9d64e0b4fabcf85f3915969

  • Size

    2.1MB

  • Sample

    231230-17gnqsaghm

  • MD5

    1e3796d3b9d64e0b4fabcf85f3915969

  • SHA1

    9f97fabc4088ef999c32c42d5afb7b71a8230d4b

  • SHA256

    e81eb25c6ad505bd281e25dc59ce7a29267a8e9e8006d06f6eef8a60ac731b76

  • SHA512

    3e93b99f0ccb9917dafd4ec4cdfe71a3d775c278597c8646c79d7cf06daa409666dacf45de878a771e65ea724417f84f0901f060b5f2d3416f76db4d33f16b7e

  • SSDEEP

    12288:BVI0W/TtlPLfJCm3WIYxJ9yK5IQ9PElOlidGAWilgm5Qq0nB6wtt4AenZ1:wfP7fWsK5z9A+WGAW+V5SB6Ct4bnb

Malware Config

Targets

    • Target

      1e3796d3b9d64e0b4fabcf85f3915969

    • Size

      2.1MB

    • MD5

      1e3796d3b9d64e0b4fabcf85f3915969

    • SHA1

      9f97fabc4088ef999c32c42d5afb7b71a8230d4b

    • SHA256

      e81eb25c6ad505bd281e25dc59ce7a29267a8e9e8006d06f6eef8a60ac731b76

    • SHA512

      3e93b99f0ccb9917dafd4ec4cdfe71a3d775c278597c8646c79d7cf06daa409666dacf45de878a771e65ea724417f84f0901f060b5f2d3416f76db4d33f16b7e

    • SSDEEP

      12288:BVI0W/TtlPLfJCm3WIYxJ9yK5IQ9PElOlidGAWilgm5Qq0nB6wtt4AenZ1:wfP7fWsK5z9A+WGAW+V5SB6Ct4bnb

    • Dridex

      Dridex(known as Bugat/Cridex) is a form of malware that specializes in stealing bank credentials.

    • Dridex Shellcode

      Detects Dridex Payload shellcode injected in Explorer process.

    • Checks whether UAC is enabled

MITRE ATT&CK Enterprise v15

Tasks