dridex | c240860de1cc6ff5aad5554f0b3bfd56d66dee303c06481c3af0361c32a0b654 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

3

b4114c9c87...da.dll

windows7-x64

b4114c9c87...da.dll

windows10-2004-x64

Sharing

General

Target

b4114c9c87725fac2ad4cca2052b04da
Size

188KB
Sample

240305-hp5nqshb6t
MD5

b4114c9c87725fac2ad4cca2052b04da
SHA1

6887c7916ebb33f6d8d1a4d88be1c6c9b0cc0549
SHA256

c240860de1cc6ff5aad5554f0b3bfd56d66dee303c06481c3af0361c32a0b654
SHA512

f32ad8488d8cffd7756da41e08a835fbbf66ab7a610fdc4346773d7e899c623cc6aec178600ec748d63cd647a3c3746c9be9b867bc3d52b82c0ed06d3ff7dc8f
SSDEEP

3072:WA8JmK7ATVfQeVqNFZa/9KzMXJ6jTFDlAwqWut5KZMzfeAAAoXo:WzIqATVfQeV2FZalKq6jtGJWuTmd

Score

10^/10

dridex 22201 botnet loader

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

b4114c9c87725fac2ad4cca2052b04da.dll

Resource

win7-20240221-en

dridex 22201 botnet loader

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

b4114c9c87725fac2ad4cca2052b04da.dll

Resource

win10v2004-20240226-en

dridex 22201 botnet loader

windows10-2004-x64

4 signatures

150 seconds

Malware Config

Extracted

Family

dridex

Botnet

22201

C2

103.82.248.59:443

54.39.98.141:6602

103.109.247.8:10443

rc4.plain

rc4.plain

Targets

- Target
  
  b4114c9c87725fac2ad4cca2052b04da
- Size
  
  188KB
- MD5
  
  b4114c9c87725fac2ad4cca2052b04da
- SHA1
  
  6887c7916ebb33f6d8d1a4d88be1c6c9b0cc0549
- SHA256
  
  c240860de1cc6ff5aad5554f0b3bfd56d66dee303c06481c3af0361c32a0b654
- SHA512
  
  f32ad8488d8cffd7756da41e08a835fbbf66ab7a610fdc4346773d7e899c623cc6aec178600ec748d63cd647a3c3746c9be9b867bc3d52b82c0ed06d3ff7dc8f
- SSDEEP
  
  3072:WA8JmK7ATVfQeVqNFZa/9KzMXJ6jTFDlAwqWut5KZMzfeAAAoXo:WzIqATVfQeV2FZalKq6jtGJWuTmd
Score

10^/10

dridex 22201 botnet loader
- Dridex
  Dridex(known as Bugat/Cridex) is a form of malware that specializes in stealing bank credentials.
  botnet dridex
- Dridex Loader
  Detects Dridex both x86 and x64 loader in memory.
  botnet loader
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

dridex22201botnetloader

behavioral2

dridex22201botnetloader

© 2018-2025

Terms | Privacy