General

  • Target

    243e8c89b703daa0a4d5f230a2827283

  • Size

    2.0MB

  • Sample

    231231-crbksagbf9

  • MD5

    243e8c89b703daa0a4d5f230a2827283

  • SHA1

    6a496cd4eaddaa34b11a585c6dbd7139243cc532

  • SHA256

    9263485491f4e8318a1dc80c789a10aa58d462b09b4e7f8bb5384b8c5d3c49be

  • SHA512

    640ca3d517b41ea7aced9fe8878bbbea7f1f53e2fa6496a4050d01f4746c7edc874418f0dd3c03ab292621ff63bbefca8ffe8e4b482a657260446d9aea928a32

  • SSDEEP

    12288:mVI0W/TtlPLfJCm3WIYxJ9yK5IQ9PElOlidGAWilgm5Qq0nB6wtt4AenZ1:7fP7fWsK5z9A+WGAW+V5SB6Ct4bnb

Malware Config

Targets

    • Target

      243e8c89b703daa0a4d5f230a2827283

    • Size

      2.0MB

    • MD5

      243e8c89b703daa0a4d5f230a2827283

    • SHA1

      6a496cd4eaddaa34b11a585c6dbd7139243cc532

    • SHA256

      9263485491f4e8318a1dc80c789a10aa58d462b09b4e7f8bb5384b8c5d3c49be

    • SHA512

      640ca3d517b41ea7aced9fe8878bbbea7f1f53e2fa6496a4050d01f4746c7edc874418f0dd3c03ab292621ff63bbefca8ffe8e4b482a657260446d9aea928a32

    • SSDEEP

      12288:mVI0W/TtlPLfJCm3WIYxJ9yK5IQ9PElOlidGAWilgm5Qq0nB6wtt4AenZ1:7fP7fWsK5z9A+WGAW+V5SB6Ct4bnb

    • Dridex

      Dridex(known as Bugat/Cridex) is a form of malware that specializes in stealing bank credentials.

    • Dridex Shellcode

      Detects Dridex Payload shellcode injected in Explorer process.

    • Checks whether UAC is enabled

MITRE ATT&CK Enterprise v15

Tasks