Overview

overview

10

Static

static

3

3c5bb8b12a...9f.dll

windows7-x64

10

3c5bb8b12a...9f.dll

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    3c5bb8b12a65098b81b0bfa93b32739f.exe

  • Size

    188KB

  • Sample

    240106-mx7khseffr

  • MD5

    3c5bb8b12a65098b81b0bfa93b32739f

  • SHA1

    ea6784b62ff77fe1b63ea7c3e770d4d1b82cbac2

  • SHA256

    9a6b8921a9d015f0d9d5787b6c5deea2aaec7102a2069ea1b31698da91bb5c49

  • SHA512

    ee95d8d988fb6e166fe32aa029f98df17aa6f33b8a13894502a0baa267943a9a4d10ffb8ff30dc45bcd5d8d364649a6fe9105fc28a6edb82e9fbf360d41d68c9

  • SSDEEP

    3072:UA8JmK7ATVfQeVqNFZa/9KzMXJ6jTFDlAwqWut5KZMzfeAAAo/o:UzIqATVfQeV2FZalKq6jtGJWuTmd

Score
10/10
dridex22201botnetloader

Malware Config

Extracted

Family

dridex

Botnet

22201

C2

103.82.248.59:443

54.39.98.141:6602

103.109.247.8:10443
rc4.plain
rc4.plain

Targets

    • Target

      3c5bb8b12a65098b81b0bfa93b32739f.exe

    • Size

      188KB

    • MD5

      3c5bb8b12a65098b81b0bfa93b32739f

    • SHA1

      ea6784b62ff77fe1b63ea7c3e770d4d1b82cbac2

    • SHA256

      9a6b8921a9d015f0d9d5787b6c5deea2aaec7102a2069ea1b31698da91bb5c49

    • SHA512

      ee95d8d988fb6e166fe32aa029f98df17aa6f33b8a13894502a0baa267943a9a4d10ffb8ff30dc45bcd5d8d364649a6fe9105fc28a6edb82e9fbf360d41d68c9

    • SSDEEP

      3072:UA8JmK7ATVfQeVqNFZa/9KzMXJ6jTFDlAwqWut5KZMzfeAAAo/o:UzIqATVfQeV2FZalKq6jtGJWuTmd

    Score
    10/10
    dridex22201botnetloader

    • Dridex

      Dridex(known as Bugat/Cridex) is a form of malware that specializes in stealing bank credentials.

      botnetdridex

    • Dridex Loader

      Detects Dridex both x86 and x64 loader in memory.

      botnetloader
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks