Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    cde4637a74e4905b2acf02063a46da84

  • Size

    188KB

  • Sample

    240316-m4tbgahf5y

  • MD5

    cde4637a74e4905b2acf02063a46da84

  • SHA1

    ad27be4b406a53336491e84a740c1ab7ea35ea7c

  • SHA256

    ab9f717e5a7eb716655c777687b21462d112fde19a888d0b27f073c85fc77917

  • SHA512

    8b082cd4216fe985a7dfc9a4d72527886ea62a3e3603b44bc44c80a0ad30403be85e0c786f9bd27368233fe46d6dc4d8dafca3bf9fcda40ad9b8acbf78bacc8b

  • SSDEEP

    3072:rA8JmK7ATVfQeVqNFZa/9KzMXJ6jTFDlAwqWut5KZMzfeAAAoTo:rzIqATVfQeV2FZalKq6jtGJWuTmd

Malware Config

Extracted

Family

dridex

Botnet

22201

C2

103.82.248.59:443

54.39.98.141:6602

103.109.247.8:10443

rc4.plain
rc4.plain

Targets

    • Target

      cde4637a74e4905b2acf02063a46da84

    • Size

      188KB

    • MD5

      cde4637a74e4905b2acf02063a46da84

    • SHA1

      ad27be4b406a53336491e84a740c1ab7ea35ea7c

    • SHA256

      ab9f717e5a7eb716655c777687b21462d112fde19a888d0b27f073c85fc77917

    • SHA512

      8b082cd4216fe985a7dfc9a4d72527886ea62a3e3603b44bc44c80a0ad30403be85e0c786f9bd27368233fe46d6dc4d8dafca3bf9fcda40ad9b8acbf78bacc8b

    • SSDEEP

      3072:rA8JmK7ATVfQeVqNFZa/9KzMXJ6jTFDlAwqWut5KZMzfeAAAoTo:rzIqATVfQeV2FZalKq6jtGJWuTmd

    • Dridex

      Dridex(known as Bugat/Cridex) is a form of malware that specializes in stealing bank credentials.

    • Dridex Loader

      Detects Dridex both x86 and x64 loader in memory.

MITRE ATT&CK Matrix

Tasks