Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    9843b2440dece2d113bb07784a0c6313

  • Size

    188KB

  • Sample

    240213-c3twhabe21

  • MD5

    9843b2440dece2d113bb07784a0c6313

  • SHA1

    9816c524ae718f88c0fc8d649094ebe3407262ac

  • SHA256

    10cc115c79c201e2f67bcdd86d95ecc9819effe3e4894f5346c418de69cfd849

  • SHA512

    c90150fde4e20ce61a1b02c64f31abde27e117b8aff1647351ed40a8d02eb17451f85145f5047b7c20c904d5764095da56501af8523fb16152b2a28b6ea9cd2b

  • SSDEEP

    3072:aA8JmK7ATVfQeVqNFZa/9KzMXJ6jTFDlAwqWut5KZMzfeAAAoBo:azIqATVfQeV2FZalKq6jtGJWuTmd

Malware Config

Extracted

Family

dridex

Botnet

22201

C2

103.82.248.59:443

54.39.98.141:6602

103.109.247.8:10443

rc4.plain
rc4.plain

Targets

    • Target

      9843b2440dece2d113bb07784a0c6313

    • Size

      188KB

    • MD5

      9843b2440dece2d113bb07784a0c6313

    • SHA1

      9816c524ae718f88c0fc8d649094ebe3407262ac

    • SHA256

      10cc115c79c201e2f67bcdd86d95ecc9819effe3e4894f5346c418de69cfd849

    • SHA512

      c90150fde4e20ce61a1b02c64f31abde27e117b8aff1647351ed40a8d02eb17451f85145f5047b7c20c904d5764095da56501af8523fb16152b2a28b6ea9cd2b

    • SSDEEP

      3072:aA8JmK7ATVfQeVqNFZa/9KzMXJ6jTFDlAwqWut5KZMzfeAAAoBo:azIqATVfQeV2FZalKq6jtGJWuTmd

    • Dridex

      Dridex(known as Bugat/Cridex) is a form of malware that specializes in stealing bank credentials.

    • Dridex Loader

      Detects Dridex both x86 and x64 loader in memory.

MITRE ATT&CK Matrix

Tasks