General

  • Target

    af44604fba422d434a7947095e467b6e

  • Size

    188KB

  • Sample

    240229-xyp2zaae33

  • MD5

    af44604fba422d434a7947095e467b6e

  • SHA1

    e9aa3d999ea0cee17e1ffe9849326ce1b02c07a7

  • SHA256

    e23d31709a59432ef6f12922fa79f4cdf387b8f0376291ddf78f604f2203f531

  • SHA512

    3849cd217bd5defc7b44076a5ed4f7366e67c223679fd703e6f08b08d611bccae7b7e7378cc1f91b7727d72f330528b2ebe66c1b08b7b4b2229e6a7ebfc45d43

  • SSDEEP

    3072:eA8JmK7ATVfQeVqNFZa/9KzMXJ6jTFDlAwqWut5KZMzfeAAAooo:ezIqATVfQeV2FZalKq6jtGJWuTmd

Malware Config

Extracted

Family

dridex

Botnet

22201

C2

103.82.248.59:443

54.39.98.141:6602

103.109.247.8:10443

rc4.plain
rc4.plain

Targets

    • Target

      af44604fba422d434a7947095e467b6e

    • Size

      188KB

    • MD5

      af44604fba422d434a7947095e467b6e

    • SHA1

      e9aa3d999ea0cee17e1ffe9849326ce1b02c07a7

    • SHA256

      e23d31709a59432ef6f12922fa79f4cdf387b8f0376291ddf78f604f2203f531

    • SHA512

      3849cd217bd5defc7b44076a5ed4f7366e67c223679fd703e6f08b08d611bccae7b7e7378cc1f91b7727d72f330528b2ebe66c1b08b7b4b2229e6a7ebfc45d43

    • SSDEEP

      3072:eA8JmK7ATVfQeVqNFZa/9KzMXJ6jTFDlAwqWut5KZMzfeAAAooo:ezIqATVfQeV2FZalKq6jtGJWuTmd

    • Dridex

      Dridex(known as Bugat/Cridex) is a form of malware that specializes in stealing bank credentials.

    • Dridex Loader

      Detects Dridex both x86 and x64 loader in memory.

MITRE ATT&CK Matrix

Tasks