Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    b4114c9c87725fac2ad4cca2052b04da

  • Size

    188KB

  • Sample

    240305-hp5nqshb6t

  • MD5

    b4114c9c87725fac2ad4cca2052b04da

  • SHA1

    6887c7916ebb33f6d8d1a4d88be1c6c9b0cc0549

  • SHA256

    c240860de1cc6ff5aad5554f0b3bfd56d66dee303c06481c3af0361c32a0b654

  • SHA512

    f32ad8488d8cffd7756da41e08a835fbbf66ab7a610fdc4346773d7e899c623cc6aec178600ec748d63cd647a3c3746c9be9b867bc3d52b82c0ed06d3ff7dc8f

  • SSDEEP

    3072:WA8JmK7ATVfQeVqNFZa/9KzMXJ6jTFDlAwqWut5KZMzfeAAAoXo:WzIqATVfQeV2FZalKq6jtGJWuTmd

Malware Config

Extracted

Family

dridex

Botnet

22201

C2

103.82.248.59:443

54.39.98.141:6602

103.109.247.8:10443

rc4.plain
rc4.plain

Targets

    • Target

      b4114c9c87725fac2ad4cca2052b04da

    • Size

      188KB

    • MD5

      b4114c9c87725fac2ad4cca2052b04da

    • SHA1

      6887c7916ebb33f6d8d1a4d88be1c6c9b0cc0549

    • SHA256

      c240860de1cc6ff5aad5554f0b3bfd56d66dee303c06481c3af0361c32a0b654

    • SHA512

      f32ad8488d8cffd7756da41e08a835fbbf66ab7a610fdc4346773d7e899c623cc6aec178600ec748d63cd647a3c3746c9be9b867bc3d52b82c0ed06d3ff7dc8f

    • SSDEEP

      3072:WA8JmK7ATVfQeVqNFZa/9KzMXJ6jTFDlAwqWut5KZMzfeAAAoXo:WzIqATVfQeV2FZalKq6jtGJWuTmd

    • Dridex

      Dridex(known as Bugat/Cridex) is a form of malware that specializes in stealing bank credentials.

    • Dridex Loader

      Detects Dridex both x86 and x64 loader in memory.

MITRE ATT&CK Matrix

Tasks