Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    d5697b0fe657921264f93e7db3d7b6f6

  • Size

    188KB

  • Sample

    240319-g3tyqach8w

  • MD5

    d5697b0fe657921264f93e7db3d7b6f6

  • SHA1

    5d11a0edb9c9abadcb657ad13f21f367f6f5b438

  • SHA256

    8bbd38d75965492de8bd3ca006b634b52ca34dcf11354fc78396ca0edbc9d5f8

  • SHA512

    6199e8c7ae1dbea17058757f0dfaabdc2d005dd330b61b3b71b396bacdde086101c809ff5ba5e6817bc5496417dc51475af34be2ef602f8d0fda3ee72868a7d6

  • SSDEEP

    3072:hA8JmK7ATVfQeVqNFZa/9KzMXJ6jTFDlAwqWut5KZMzfeAAAolo:hzIqATVfQeV2FZalKq6jtGJWuTmd

Malware Config

Extracted

Family

dridex

Botnet

22201

C2

103.82.248.59:443

54.39.98.141:6602

103.109.247.8:10443

rc4.plain
rc4.plain

Targets

    • Target

      d5697b0fe657921264f93e7db3d7b6f6

    • Size

      188KB

    • MD5

      d5697b0fe657921264f93e7db3d7b6f6

    • SHA1

      5d11a0edb9c9abadcb657ad13f21f367f6f5b438

    • SHA256

      8bbd38d75965492de8bd3ca006b634b52ca34dcf11354fc78396ca0edbc9d5f8

    • SHA512

      6199e8c7ae1dbea17058757f0dfaabdc2d005dd330b61b3b71b396bacdde086101c809ff5ba5e6817bc5496417dc51475af34be2ef602f8d0fda3ee72868a7d6

    • SSDEEP

      3072:hA8JmK7ATVfQeVqNFZa/9KzMXJ6jTFDlAwqWut5KZMzfeAAAolo:hzIqATVfQeV2FZalKq6jtGJWuTmd

    • Dridex

      Dridex(known as Bugat/Cridex) is a form of malware that specializes in stealing bank credentials.

    • Dridex Loader

      Detects Dridex both x86 and x64 loader in memory.

MITRE ATT&CK Matrix

Tasks