Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    122e17e02bfd692283a85d2d6dbe3068

  • Size

    188KB

  • Sample

    231230-jbx76sbdfr

  • MD5

    122e17e02bfd692283a85d2d6dbe3068

  • SHA1

    33f692ccc17296d9641867e6d372351dd6c22739

  • SHA256

    d577f9934a6567ff79b0dc31d7e3d2187d0407e806f800e9eaa124f44014c635

  • SHA512

    14a77d632776d980b4fa1dc07c6a4cf0ba377b7ce024edb411e6bf0500718e6c31f34f23c6f3a232eef0364cdad7c25a41722a5109e63fe394031f83745ae6ad

  • SSDEEP

    3072:5H0uyjZqEpAK+Gf78TBdrXkTM5vhRg9Esf0DwvtyMpVnpA+z6tX8sxKViWY7dU:5Uua/Pv7YNhRIEZDeXVpAxtMsxK

Malware Config

Extracted

Family

dridex

Botnet

22201

C2

103.82.248.59:443

54.39.98.141:6602

103.109.247.8:10443

rc4.plain
rc4.plain

Targets

    • Target

      122e17e02bfd692283a85d2d6dbe3068

    • Size

      188KB

    • MD5

      122e17e02bfd692283a85d2d6dbe3068

    • SHA1

      33f692ccc17296d9641867e6d372351dd6c22739

    • SHA256

      d577f9934a6567ff79b0dc31d7e3d2187d0407e806f800e9eaa124f44014c635

    • SHA512

      14a77d632776d980b4fa1dc07c6a4cf0ba377b7ce024edb411e6bf0500718e6c31f34f23c6f3a232eef0364cdad7c25a41722a5109e63fe394031f83745ae6ad

    • SSDEEP

      3072:5H0uyjZqEpAK+Gf78TBdrXkTM5vhRg9Esf0DwvtyMpVnpA+z6tX8sxKViWY7dU:5Uua/Pv7YNhRIEZDeXVpAxtMsxK

    • Dridex

      Dridex(known as Bugat/Cridex) is a form of malware that specializes in stealing bank credentials.

    • Dridex Loader

      Detects Dridex both x86 and x64 loader in memory.

MITRE ATT&CK Matrix

Tasks