dridex | 3c20bb376dc29063f3554c6b45f7e2528b70c24d3d4b1916b51d97d05f2e08a2 | Triage

Submit
Reports

Overview

overview

Static

static

3

da31a4129a...86.dll

windows7-x64

da31a4129a...86.dll

windows10-2004-x64

Sharing

General

Target

da31a4129a2c936357906ff1003c3286
Size

184KB
Sample

240321-ajcf1aeh59
MD5

da31a4129a2c936357906ff1003c3286
SHA1

211b563bf1bcd8b69362d7d57a13c26d32c0a278
SHA256

3c20bb376dc29063f3554c6b45f7e2528b70c24d3d4b1916b51d97d05f2e08a2
SHA512

d9a5b48d291a9bb52f34f6288bb7e39652ceb126379d50496d7d88ecaf8c6629e8f30614362e0217c047991c9f7027ae7b21cd2c394746a17a6db3cb8cfe441a
SSDEEP

3072:EcYhzpn9z75jWpmrL3gA99hXkKsorn+AOr4RnjvaT:EcIntom33RDvn+RrAr

Score

10^/10

dridex 22203 botnet loader

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

da31a4129a2c936357906ff1003c3286.dll

Resource

win7-20240221-en

dridex 22203 botnet loader

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

da31a4129a2c936357906ff1003c3286.dll

Resource

win10v2004-20240226-en

dridex 22203 botnet loader

windows10-2004-x64

4 signatures

150 seconds

Malware Config

Extracted

Family

dridex

Botnet

22203

C2

137.74.112.43:443

216.108.227.55:6225

94.177.176.51:5723

rc4.plain

rc4.plain

Targets

- Target
  
  da31a4129a2c936357906ff1003c3286
- Size
  
  184KB
- MD5
  
  da31a4129a2c936357906ff1003c3286
- SHA1
  
  211b563bf1bcd8b69362d7d57a13c26d32c0a278
- SHA256
  
  3c20bb376dc29063f3554c6b45f7e2528b70c24d3d4b1916b51d97d05f2e08a2
- SHA512
  
  d9a5b48d291a9bb52f34f6288bb7e39652ceb126379d50496d7d88ecaf8c6629e8f30614362e0217c047991c9f7027ae7b21cd2c394746a17a6db3cb8cfe441a
- SSDEEP
  
  3072:EcYhzpn9z75jWpmrL3gA99hXkKsorn+AOr4RnjvaT:EcIntom33RDvn+RrAr
Score

10^/10

dridex 22203 botnet loader
- Dridex
  Dridex(known as Bugat/Cridex) is a form of malware that specializes in stealing bank credentials.
  botnet dridex
- Dridex Loader
  Detects Dridex both x86 and x64 loader in memory.
  botnet loader
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

dridex22203botnetloader

behavioral2

dridex22203botnetloader

© 2018-2024

Terms | Privacy