General

  • Target

    afc89dc07e7725ecc6c889dde5584db6

  • Size

    188KB

  • Sample

    240229-3vmqbsgc77

  • MD5

    afc89dc07e7725ecc6c889dde5584db6

  • SHA1

    a86ea06858e995ff0507c3dbf2cbe4482380b9a3

  • SHA256

    44d89bd0a3deecc22c007a04b7a2ca7b41ce8c528bd387ef0859e7598fdb8ffd

  • SHA512

    966d2f571253d7026b5f5397eb37662dec9e8775a59e9c98b76384684d46e80214eae5142dda6be1eda67022074a137ac6e70ce25a0897c0078e345abb014483

  • SSDEEP

    3072:nA8JmK7ATVfQeVqNFZa/9KzMXJ6jTFDlAwqWut5KZMzfeAAAofo:nzIqATVfQeV2FZalKq6jtGJWuTmd

Malware Config

Extracted

Family

dridex

Botnet

22201

C2

103.82.248.59:443

54.39.98.141:6602

103.109.247.8:10443

rc4.plain
rc4.plain

Targets

    • Target

      afc89dc07e7725ecc6c889dde5584db6

    • Size

      188KB

    • MD5

      afc89dc07e7725ecc6c889dde5584db6

    • SHA1

      a86ea06858e995ff0507c3dbf2cbe4482380b9a3

    • SHA256

      44d89bd0a3deecc22c007a04b7a2ca7b41ce8c528bd387ef0859e7598fdb8ffd

    • SHA512

      966d2f571253d7026b5f5397eb37662dec9e8775a59e9c98b76384684d46e80214eae5142dda6be1eda67022074a137ac6e70ce25a0897c0078e345abb014483

    • SSDEEP

      3072:nA8JmK7ATVfQeVqNFZa/9KzMXJ6jTFDlAwqWut5KZMzfeAAAofo:nzIqATVfQeV2FZalKq6jtGJWuTmd

    • Dridex

      Dridex(known as Bugat/Cridex) is a form of malware that specializes in stealing bank credentials.

    • Dridex Loader

      Detects Dridex both x86 and x64 loader in memory.

MITRE ATT&CK Matrix

Tasks