General

  • Target

    aeb6f510974a68ae37e93bd6dab1655b

  • Size

    188KB

  • Sample

    240229-rm6mpacb59

  • MD5

    aeb6f510974a68ae37e93bd6dab1655b

  • SHA1

    7952f05fda2021f93d94be7e71053300a052dde0

  • SHA256

    48aa4a8d82002cc864f0dfc915abff8895255e48f1003e91b8d68b33fab91e05

  • SHA512

    ac85da34957b7b12eb359fb6df61987d6970c0c9b86f52c46c4e21544f3f0cb87f785132cf708ec1935750de44b25d098d92628e4d5515a0f9542c5d07deaf25

  • SSDEEP

    3072:CA8JmK7ATVfQeVqNFZa/9KzMXJ6jTFDlAwqWut5KZMzfeAAAoSo:CzIqATVfQeV2FZalKq6jtGJWuTmd

Malware Config

Extracted

Family

dridex

Botnet

22201

C2

103.82.248.59:443

54.39.98.141:6602

103.109.247.8:10443

rc4.plain
rc4.plain

Targets

    • Target

      aeb6f510974a68ae37e93bd6dab1655b

    • Size

      188KB

    • MD5

      aeb6f510974a68ae37e93bd6dab1655b

    • SHA1

      7952f05fda2021f93d94be7e71053300a052dde0

    • SHA256

      48aa4a8d82002cc864f0dfc915abff8895255e48f1003e91b8d68b33fab91e05

    • SHA512

      ac85da34957b7b12eb359fb6df61987d6970c0c9b86f52c46c4e21544f3f0cb87f785132cf708ec1935750de44b25d098d92628e4d5515a0f9542c5d07deaf25

    • SSDEEP

      3072:CA8JmK7ATVfQeVqNFZa/9KzMXJ6jTFDlAwqWut5KZMzfeAAAoSo:CzIqATVfQeV2FZalKq6jtGJWuTmd

    • Dridex

      Dridex(known as Bugat/Cridex) is a form of malware that specializes in stealing bank credentials.

    • Dridex Loader

      Detects Dridex both x86 and x64 loader in memory.

MITRE ATT&CK Matrix

Tasks