dridex | 4168149505f64c1b3a1be8c83d2a1ecd000b6973388b78e461631f8c4c715c7c | Triage

Submit
Reports

Overview

overview

Static

static

3

cryptolaemus

windows10-2004-x64

cryptolaemus

windows11-21h2-x64

Sharing

General

Target

4168149505f64c1b3a1be8c83d2a1ecd000b6973388b78e461631f8c4c715c7c
Size

184KB
Sample

240319-xk8bdsch4t
MD5

bbac8390f548da7872b1c7e02ed84ea5
SHA1

42666a880aecbb18685ab31b248e333b26bd38ae
SHA256

4168149505f64c1b3a1be8c83d2a1ecd000b6973388b78e461631f8c4c715c7c
SHA512

552d67a5e131360338a8d64f579e98c4742f04f30e51fa1863a2647c1ec4422a09c817628a5aafa246af3d31f533bb24265dc5669b894b92d491adee97df777e
SSDEEP

3072:oJQ6H3ykY88YOSs+k1TwEuTcMIznNuOzlr1Xznku9Luk0eJww8Jda//2uFrSc:lfYOX+wTScR/Xzku9LVwKuG

Score

10^/10

dridex 22201 botnet loader

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

4168149505f64c1b3a1be8c83d2a1ecd000b6973388b78e461631f8c4c715c7c.dll

Resource

win10v2004-20240226-en

dridex 22201 botnet loader

windows10-2004-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

4168149505f64c1b3a1be8c83d2a1ecd000b6973388b78e461631f8c4c715c7c.dll

Resource

win11-20240221-en

dridex 22201 botnet loader

windows11-21h2-x64

4 signatures

150 seconds

Malware Config

Extracted

Family

dridex

Botnet

22201

C2

80.241.218.90:443

103.161.172.109:13786

87.98.128.76:5723

rc4.plain

rc4.plain

Targets

- Target
  
  4168149505f64c1b3a1be8c83d2a1ecd000b6973388b78e461631f8c4c715c7c
- Size
  
  184KB
- MD5
  
  bbac8390f548da7872b1c7e02ed84ea5
- SHA1
  
  42666a880aecbb18685ab31b248e333b26bd38ae
- SHA256
  
  4168149505f64c1b3a1be8c83d2a1ecd000b6973388b78e461631f8c4c715c7c
- SHA512
  
  552d67a5e131360338a8d64f579e98c4742f04f30e51fa1863a2647c1ec4422a09c817628a5aafa246af3d31f533bb24265dc5669b894b92d491adee97df777e
- SSDEEP
  
  3072:oJQ6H3ykY88YOSs+k1TwEuTcMIznNuOzlr1Xznku9Luk0eJww8Jda//2uFrSc:lfYOX+wTScR/Xzku9LVwKuG
Score

10^/10

dridex 22201 botnet loader
- Dridex
  Dridex(known as Bugat/Cridex) is a form of malware that specializes in stealing bank credentials.
  botnet dridex
- Dridex Loader
  Detects Dridex both x86 and x64 loader in memory.
  botnet loader
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

dridex22201botnetloader

behavioral2

dridex22201botnetloader

© 2018-2024

Terms | Privacy