Overview

overview

10

Static

static

3

de29b0b700...33.dll

windows7-x64

10

de29b0b700...33.dll

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    de29b0b70017a6201969ce93b9214a33

  • Size

    188KB

  • Sample

    240325-q6lk7ahh78

  • MD5

    de29b0b70017a6201969ce93b9214a33

  • SHA1

    76d31a26c2e274173fcccccc5e5eadf90730d662

  • SHA256

    9a505140c8bc2c078283fcca2f49e972f6fb33da514e578136cc84b3cb17b0e3

  • SHA512

    bb449bf33ca883ddfb1fcd6d31f3b7c625e21f940f4f09cbdd67b6fa017a9d771694a4074d7fb8d1abbd5d37a196d1f293138602cdd27067a6df3c6b7d2372c5

  • SSDEEP

    3072:gA8JmK7ATVfQeVqNFZa/9KzMXJ6jTFDlAwqWut5KZMzfeAAAo0o:gzIqATVfQeV2FZalKq6jtGJWuTmd

Score
10/10
dridex22201botnetloader

Malware Config

Extracted

Family

dridex

Botnet

22201

C2

103.82.248.59:443

54.39.98.141:6602

103.109.247.8:10443
rc4.plain
rc4.plain

Targets

    • Target

      de29b0b70017a6201969ce93b9214a33

    • Size

      188KB

    • MD5

      de29b0b70017a6201969ce93b9214a33

    • SHA1

      76d31a26c2e274173fcccccc5e5eadf90730d662

    • SHA256

      9a505140c8bc2c078283fcca2f49e972f6fb33da514e578136cc84b3cb17b0e3

    • SHA512

      bb449bf33ca883ddfb1fcd6d31f3b7c625e21f940f4f09cbdd67b6fa017a9d771694a4074d7fb8d1abbd5d37a196d1f293138602cdd27067a6df3c6b7d2372c5

    • SSDEEP

      3072:gA8JmK7ATVfQeVqNFZa/9KzMXJ6jTFDlAwqWut5KZMzfeAAAo0o:gzIqATVfQeV2FZalKq6jtGJWuTmd

    Score
    10/10
    dridex22201botnetloader

    • Dridex

      Dridex(known as Bugat/Cridex) is a form of malware that specializes in stealing bank credentials.

      botnetdridex

    • Dridex Loader

      Detects Dridex both x86 and x64 loader in memory.

      botnetloader
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks