dridex | 1a776455711fe20615a1d0c42d9f4a669ec0c5684f65455f519aedaf2a4e3f34 | Triage

Submit
Reports

Overview

overview

Static

static

3

cryptolaemus

windows10-2004-x64

cryptolaemus

windows11-21h2-x64

Sharing

General

Target

1a776455711fe20615a1d0c42d9f4a669ec0c5684f65455f519aedaf2a4e3f34
Size

184KB
Sample

240319-xkqfksca89
MD5

13c3a1a512c864c4f9ca98e450fe5452
SHA1

1e719e391edcbba91d91708f972a7c1bc0899b03
SHA256

1a776455711fe20615a1d0c42d9f4a669ec0c5684f65455f519aedaf2a4e3f34
SHA512

3d4ae0529d5db3ba27d9f93f7cfcaaffeb5866f44a3d49217fb99831925b06fcb04d0900638f84342c28d8729a06477a8e8645401d0684d6bc5067061b7a8a4c
SSDEEP

3072:YJQ6H3ykY88YOSs+k1TwEuTcMIznNuOzlr1Xznku9Luk0eJww8JFa//2uFrSc:1fYOX+wTScR/Xzku9LVwGuG

Score

10^/10

dridex 22201 botnet loader

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

1a776455711fe20615a1d0c42d9f4a669ec0c5684f65455f519aedaf2a4e3f34.dll

Resource

win10v2004-20240226-en

dridex 22201 botnet loader

windows10-2004-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

1a776455711fe20615a1d0c42d9f4a669ec0c5684f65455f519aedaf2a4e3f34.dll

Resource

win11-20240221-en

dridex 22201 botnet loader

windows11-21h2-x64

4 signatures

150 seconds

Malware Config

Extracted

Family

dridex

Botnet

22201

C2

80.241.218.90:443

103.161.172.109:13786

87.98.128.76:5723

rc4.plain

rc4.plain

Targets

- Target
  
  1a776455711fe20615a1d0c42d9f4a669ec0c5684f65455f519aedaf2a4e3f34
- Size
  
  184KB
- MD5
  
  13c3a1a512c864c4f9ca98e450fe5452
- SHA1
  
  1e719e391edcbba91d91708f972a7c1bc0899b03
- SHA256
  
  1a776455711fe20615a1d0c42d9f4a669ec0c5684f65455f519aedaf2a4e3f34
- SHA512
  
  3d4ae0529d5db3ba27d9f93f7cfcaaffeb5866f44a3d49217fb99831925b06fcb04d0900638f84342c28d8729a06477a8e8645401d0684d6bc5067061b7a8a4c
- SSDEEP
  
  3072:YJQ6H3ykY88YOSs+k1TwEuTcMIznNuOzlr1Xznku9Luk0eJww8JFa//2uFrSc:1fYOX+wTScR/Xzku9LVwGuG
Score

10^/10

dridex 22201 botnet loader
- Dridex
  Dridex(known as Bugat/Cridex) is a form of malware that specializes in stealing bank credentials.
  botnet dridex
- Dridex Loader
  Detects Dridex both x86 and x64 loader in memory.
  botnet loader
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

dridex22201botnetloader

behavioral2

dridex22201botnetloader

© 2018-2024

Terms | Privacy