General

  • Target

    ada7bbbb7d4c78be19d1047a58501d58

  • Size

    188KB

  • Sample

    240229-eq933adb32

  • MD5

    ada7bbbb7d4c78be19d1047a58501d58

  • SHA1

    bc02389e5bcd9f970c5e716680b908dc452b7ad2

  • SHA256

    67b2586425a14f8a16ff9f38a8bd4f2092a93579768f4b2554acd81c4711eecf

  • SHA512

    249ceeabaf3b73785dd8f7e0878c7b06bee08f36663f6b8777b0539727479606301b165416613b13250eb1e9e6856826b563fbd610915a6461934423c98c293a

  • SSDEEP

    3072:cA8JmK7ATVfQeVqNFZa/9KzMXJ6jTFDlAwqWut5KZMzfeAAAoXo:czIqATVfQeV2FZalKq6jtGJWuTmd

Malware Config

Extracted

Family

dridex

Botnet

22201

C2

103.82.248.59:443

54.39.98.141:6602

103.109.247.8:10443

rc4.plain
rc4.plain

Targets

    • Target

      ada7bbbb7d4c78be19d1047a58501d58

    • Size

      188KB

    • MD5

      ada7bbbb7d4c78be19d1047a58501d58

    • SHA1

      bc02389e5bcd9f970c5e716680b908dc452b7ad2

    • SHA256

      67b2586425a14f8a16ff9f38a8bd4f2092a93579768f4b2554acd81c4711eecf

    • SHA512

      249ceeabaf3b73785dd8f7e0878c7b06bee08f36663f6b8777b0539727479606301b165416613b13250eb1e9e6856826b563fbd610915a6461934423c98c293a

    • SSDEEP

      3072:cA8JmK7ATVfQeVqNFZa/9KzMXJ6jTFDlAwqWut5KZMzfeAAAoXo:czIqATVfQeV2FZalKq6jtGJWuTmd

    • Dridex

      Dridex(known as Bugat/Cridex) is a form of malware that specializes in stealing bank credentials.

    • Dridex Loader

      Detects Dridex both x86 and x64 loader in memory.

MITRE ATT&CK Matrix

Tasks