General

  • Target

    1f48c51d0e1e672079488c0cb8ef9a0e

  • Size

    3.2MB

  • Sample

    231230-2zw9wsbac6

  • MD5

    1f48c51d0e1e672079488c0cb8ef9a0e

  • SHA1

    ef44ad641ef115c984a3c4bfec9125b4ca54bea2

  • SHA256

    016ffd2b5f4c6a94110bce1f3dcca1399b0eb1d22a53374684a9231f37d8b299

  • SHA512

    f84cb7b88c9df4a4647cf33e59b0898302fe2ca3d79ae76bc22b04f91c5ba630683513f8bf7a599621a1c7ae71a307feadfd1d692615a58a3ddc78502303f804

  • SSDEEP

    12288:FVI0W/TtlPLfJCm3WIYxJ9yK5IQ9PElOlidGAWilgm5Qq0nB6wtt4AenZ10t:cfP7fWsK5z9A+WGAW+V5SB6Ct4bnb0t

Malware Config

Targets

    • Target

      1f48c51d0e1e672079488c0cb8ef9a0e

    • Size

      3.2MB

    • MD5

      1f48c51d0e1e672079488c0cb8ef9a0e

    • SHA1

      ef44ad641ef115c984a3c4bfec9125b4ca54bea2

    • SHA256

      016ffd2b5f4c6a94110bce1f3dcca1399b0eb1d22a53374684a9231f37d8b299

    • SHA512

      f84cb7b88c9df4a4647cf33e59b0898302fe2ca3d79ae76bc22b04f91c5ba630683513f8bf7a599621a1c7ae71a307feadfd1d692615a58a3ddc78502303f804

    • SSDEEP

      12288:FVI0W/TtlPLfJCm3WIYxJ9yK5IQ9PElOlidGAWilgm5Qq0nB6wtt4AenZ10t:cfP7fWsK5z9A+WGAW+V5SB6Ct4bnb0t

    • Dridex

      Dridex(known as Bugat/Cridex) is a form of malware that specializes in stealing bank credentials.

    • Dridex Shellcode

      Detects Dridex Payload shellcode injected in Explorer process.

    • Checks whether UAC is enabled

MITRE ATT&CK Enterprise v15

Tasks