General

  • Target

    abf310bfe97e964035cda04d84159fa9

  • Size

    188KB

  • Sample

    240228-qbvwdacc5v

  • MD5

    abf310bfe97e964035cda04d84159fa9

  • SHA1

    c2606bf5eb628ae3dd224cfd5e1cd6a1788a9362

  • SHA256

    82c31bda55d8bd99a205ef5bc9819330368dfc4d35b482d97086be50d6fe4d95

  • SHA512

    c8c6a81cfcc0c668c159d7b4620dc84905078d2c3a0a61b1f7c1690a56a6af281070c690db251e226ace47b8e98a63ad62135d3261692bacfa6bb59cfb345b48

  • SSDEEP

    3072:8A8JmK7ATVfQeVqNFZa/9KzMXJ6jTFDlAwqWut5KZMzfeAAAoXo:8zIqATVfQeV2FZalKq6jtGJWuTmd

Malware Config

Extracted

Family

dridex

Botnet

22201

C2

103.82.248.59:443

54.39.98.141:6602

103.109.247.8:10443

rc4.plain
rc4.plain

Targets

    • Target

      abf310bfe97e964035cda04d84159fa9

    • Size

      188KB

    • MD5

      abf310bfe97e964035cda04d84159fa9

    • SHA1

      c2606bf5eb628ae3dd224cfd5e1cd6a1788a9362

    • SHA256

      82c31bda55d8bd99a205ef5bc9819330368dfc4d35b482d97086be50d6fe4d95

    • SHA512

      c8c6a81cfcc0c668c159d7b4620dc84905078d2c3a0a61b1f7c1690a56a6af281070c690db251e226ace47b8e98a63ad62135d3261692bacfa6bb59cfb345b48

    • SSDEEP

      3072:8A8JmK7ATVfQeVqNFZa/9KzMXJ6jTFDlAwqWut5KZMzfeAAAoXo:8zIqATVfQeV2FZalKq6jtGJWuTmd

    • Dridex

      Dridex(known as Bugat/Cridex) is a form of malware that specializes in stealing bank credentials.

    • Dridex Loader

      Detects Dridex both x86 and x64 loader in memory.

MITRE ATT&CK Matrix

Tasks