Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    8c060cdf774f6ce712a10313c8323f85

  • Size

    188KB

  • Sample

    240203-lvrwlshabn

  • MD5

    8c060cdf774f6ce712a10313c8323f85

  • SHA1

    99fbbea1c80d05cd1083fc5b1ac306019c195d31

  • SHA256

    1c38b3f0f354a1ea13f092a6fd99e0fab8ba85194129eee6c6e9ad088d14c9aa

  • SHA512

    1cf7457b7b8a3abc60f176239eabf48cc0f419607c89dbc2bdde78597638b3b76419afbfefeb000b4f4d1eceacc5faa2c9a912185933bc7bcc76b95fd14c64a1

  • SSDEEP

    3072:NA8JmK7ATVfQeVqNFZa/9KzMXJ6jTFDlAwqWut5KZMzfeAAAoVo:NzIqATVfQeV2FZalKq6jtGJWuTmd

Malware Config

Extracted

Family

dridex

Botnet

22201

C2

103.82.248.59:443

54.39.98.141:6602

103.109.247.8:10443

rc4.plain
rc4.plain

Targets

    • Target

      8c060cdf774f6ce712a10313c8323f85

    • Size

      188KB

    • MD5

      8c060cdf774f6ce712a10313c8323f85

    • SHA1

      99fbbea1c80d05cd1083fc5b1ac306019c195d31

    • SHA256

      1c38b3f0f354a1ea13f092a6fd99e0fab8ba85194129eee6c6e9ad088d14c9aa

    • SHA512

      1cf7457b7b8a3abc60f176239eabf48cc0f419607c89dbc2bdde78597638b3b76419afbfefeb000b4f4d1eceacc5faa2c9a912185933bc7bcc76b95fd14c64a1

    • SSDEEP

      3072:NA8JmK7ATVfQeVqNFZa/9KzMXJ6jTFDlAwqWut5KZMzfeAAAoVo:NzIqATVfQeV2FZalKq6jtGJWuTmd

    • Dridex

      Dridex(known as Bugat/Cridex) is a form of malware that specializes in stealing bank credentials.

    • Dridex Loader

      Detects Dridex both x86 and x64 loader in memory.

MITRE ATT&CK Matrix

Tasks