Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    a2d5a22d6814179a5d52fcf5e48b4ae7

  • Size

    184KB

  • Sample

    240224-1wrdssgc4z

  • MD5

    a2d5a22d6814179a5d52fcf5e48b4ae7

  • SHA1

    a01d40f229629de4ac15bc223579ac09a63293c6

  • SHA256

    4a253a6d702edb0bd59424d642dc34746fb31c03949bcd0693ad9f30dd7f99fb

  • SHA512

    0c323c4886b71800e9984e00aee12858a267fb1dcfd7624ecca8f5ee001391957ef7ee44d1bdfa7fb80ea2984a4901c410c27a58980a26bd09014640c0165198

  • SSDEEP

    3072:mhd6lp2ffOeP3gv+i4W63iFfKfXM9mQltYwgO226+f33JgVQcY:m3fOeIv54W6SFKfc9me9v9/JgV

Malware Config

Extracted

Family

dridex

Botnet

22201

C2

51.79.50.122:443

222.124.142.67:10443

138.201.222.158:4664

rc4.plain
rc4.plain

Targets

    • Target

      a2d5a22d6814179a5d52fcf5e48b4ae7

    • Size

      184KB

    • MD5

      a2d5a22d6814179a5d52fcf5e48b4ae7

    • SHA1

      a01d40f229629de4ac15bc223579ac09a63293c6

    • SHA256

      4a253a6d702edb0bd59424d642dc34746fb31c03949bcd0693ad9f30dd7f99fb

    • SHA512

      0c323c4886b71800e9984e00aee12858a267fb1dcfd7624ecca8f5ee001391957ef7ee44d1bdfa7fb80ea2984a4901c410c27a58980a26bd09014640c0165198

    • SSDEEP

      3072:mhd6lp2ffOeP3gv+i4W63iFfKfXM9mQltYwgO226+f33JgVQcY:m3fOeIv54W6SFKfc9me9v9/JgV

    • Dridex

      Dridex(known as Bugat/Cridex) is a form of malware that specializes in stealing bank credentials.

    • Dridex Loader

      Detects Dridex both x86 and x64 loader in memory.

MITRE ATT&CK Matrix

Tasks