General

  • Target

    ac91d701c6d2a55594cde25b9a031d48

  • Size

    188KB

  • Sample

    240228-w8dw1sba37

  • MD5

    ac91d701c6d2a55594cde25b9a031d48

  • SHA1

    87a35cff9b7bf10aabc963fc972394731ec67e48

  • SHA256

    0334c387006687719ef43f55c6a6b859110ef37e48242e10ae2a5d2595a42b4e

  • SHA512

    ffcdca679c6d6515d85a8d62d67fa08a43e5f524b9ed9337c890244cd52a7feb29123345bccf513339aa58dde55458974d75f552a9e1a82713d93cae50844ae1

  • SSDEEP

    3072:8A8JmK7ATVfQeVqNFZa/9KzMXJ6jTFDlAwqWut5KZMzfeAAAolo:8zIqATVfQeV2FZalKq6jtGJWuTmd

Malware Config

Extracted

Family

dridex

Botnet

22201

C2

103.82.248.59:443

54.39.98.141:6602

103.109.247.8:10443

rc4.plain
rc4.plain

Targets

    • Target

      ac91d701c6d2a55594cde25b9a031d48

    • Size

      188KB

    • MD5

      ac91d701c6d2a55594cde25b9a031d48

    • SHA1

      87a35cff9b7bf10aabc963fc972394731ec67e48

    • SHA256

      0334c387006687719ef43f55c6a6b859110ef37e48242e10ae2a5d2595a42b4e

    • SHA512

      ffcdca679c6d6515d85a8d62d67fa08a43e5f524b9ed9337c890244cd52a7feb29123345bccf513339aa58dde55458974d75f552a9e1a82713d93cae50844ae1

    • SSDEEP

      3072:8A8JmK7ATVfQeVqNFZa/9KzMXJ6jTFDlAwqWut5KZMzfeAAAolo:8zIqATVfQeV2FZalKq6jtGJWuTmd

    • Dridex

      Dridex(known as Bugat/Cridex) is a form of malware that specializes in stealing bank credentials.

    • Dridex Loader

      Detects Dridex both x86 and x64 loader in memory.

MITRE ATT&CK Matrix

Tasks