Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

3

4ef41c8a6a...49.dll

windows7-x64

10

4ef41c8a6a...49.dll

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    4ef41c8a6ad1793dd6c12785f8d00c49

  • Size

    188KB

  • Sample

    240109-xmje2shgd9

  • MD5

    4ef41c8a6ad1793dd6c12785f8d00c49

  • SHA1

    b11246afc9853657028260993960e591c3e78e72

  • SHA256

    fd203d1a3be0e29d9963c856912d38ed4ab11bee899ca9748229079546df278c

  • SHA512

    12687b5e539b117d14ca217d335458a666fa015382ac3de46ec665c3c710da5c7755e546105202332e2a7a656117f769864ed95f8c6b81025ad9f9ebf31868ce

  • SSDEEP

    3072:FA8JmK7ATVfQeVqNFZa/9KzMXJ6jTFDlAwqWut5KZMzfeAAAovo:FzIqATVfQeV2FZalKq6jtGJWuTmd

Score
10/10
dridex22201botnetloader

Malware Config

Extracted

Family

dridex

Botnet

22201

C2

103.82.248.59:443

54.39.98.141:6602

103.109.247.8:10443
rc4.plain
rc4.plain

Targets

    • Target

      4ef41c8a6ad1793dd6c12785f8d00c49

    • Size

      188KB

    • MD5

      4ef41c8a6ad1793dd6c12785f8d00c49

    • SHA1

      b11246afc9853657028260993960e591c3e78e72

    • SHA256

      fd203d1a3be0e29d9963c856912d38ed4ab11bee899ca9748229079546df278c

    • SHA512

      12687b5e539b117d14ca217d335458a666fa015382ac3de46ec665c3c710da5c7755e546105202332e2a7a656117f769864ed95f8c6b81025ad9f9ebf31868ce

    • SSDEEP

      3072:FA8JmK7ATVfQeVqNFZa/9KzMXJ6jTFDlAwqWut5KZMzfeAAAovo:FzIqATVfQeV2FZalKq6jtGJWuTmd

    Score
    10/10
    dridex22201botnetloader

    • Dridex

      Dridex(known as Bugat/Cridex) is a form of malware that specializes in stealing bank credentials.

      botnetdridex

    • Dridex Loader

      Detects Dridex both x86 and x64 loader in memory.

      botnetloader
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks