dridex | 0cb30e296bf6886dddbcc728fd5ee733bb9151218481960791ce50690056e73e | Triage

Submit
Reports

Overview

overview

Static

static

3

cryptolaemus

windows10-2004-x64

cryptolaemus

windows11-21h2-x64

Sharing

General

Target

0cb30e296bf6886dddbcc728fd5ee733bb9151218481960791ce50690056e73e
Size

184KB
Sample

240319-xk4cfach3w
MD5

717a4688451f9ed372c48a692a9dc547
SHA1

e51e5e245d9a3b1612472ff3e9334d4508ed2905
SHA256

0cb30e296bf6886dddbcc728fd5ee733bb9151218481960791ce50690056e73e
SHA512

f42900da250e512c7f5b24980a9efd149db3d0826b3d35addc74a331a2a22cd5cdbf245eb85e68a45f9274bc45f86dff99fdca9546620ac1f5e77505132410d9
SSDEEP

3072:ZJQ6H3ykY88YOSs+k1TwEuTcMIznNuOzlr1Xznku9Luk0eJww8Jka//2uFrSc:afYOX+wTScR/Xzku9LVw/uG

Score

10^/10

dridex 22201 botnet loader

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

0cb30e296bf6886dddbcc728fd5ee733bb9151218481960791ce50690056e73e.dll

Resource

win10v2004-20240226-en

dridex 22201 botnet loader

windows10-2004-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

0cb30e296bf6886dddbcc728fd5ee733bb9151218481960791ce50690056e73e.dll

Resource

win11-20240221-en

dridex 22201 botnet loader

windows11-21h2-x64

4 signatures

150 seconds

Malware Config

Extracted

Family

dridex

Botnet

22201

C2

80.241.218.90:443

103.161.172.109:13786

87.98.128.76:5723

rc4.plain

rc4.plain

Targets

- Target
  
  0cb30e296bf6886dddbcc728fd5ee733bb9151218481960791ce50690056e73e
- Size
  
  184KB
- MD5
  
  717a4688451f9ed372c48a692a9dc547
- SHA1
  
  e51e5e245d9a3b1612472ff3e9334d4508ed2905
- SHA256
  
  0cb30e296bf6886dddbcc728fd5ee733bb9151218481960791ce50690056e73e
- SHA512
  
  f42900da250e512c7f5b24980a9efd149db3d0826b3d35addc74a331a2a22cd5cdbf245eb85e68a45f9274bc45f86dff99fdca9546620ac1f5e77505132410d9
- SSDEEP
  
  3072:ZJQ6H3ykY88YOSs+k1TwEuTcMIznNuOzlr1Xznku9Luk0eJww8Jka//2uFrSc:afYOX+wTScR/Xzku9LVw/uG
Score

10^/10

dridex 22201 botnet loader
- Dridex
  Dridex(known as Bugat/Cridex) is a form of malware that specializes in stealing bank credentials.
  botnet dridex
- Dridex Loader
  Detects Dridex both x86 and x64 loader in memory.
  botnet loader
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

dridex22201botnetloader

behavioral2

dridex22201botnetloader

© 2018-2024

Terms | Privacy