dridex | 25b16667b3194dd3d15525eb88f274a305786de7e39fd789ff3da514379f7dcb | Triage

Submit
Reports

Overview

overview

Static

static

3

e5f13c6bb1...18.dll

windows7-x64

e5f13c6bb1...18.dll

windows10-2004-x64

Sharing

General

Target

e5f13c6bb1109d1197126921de074041_JaffaCakes118
Size

188KB
Sample

240407-1rxp1sfg42
MD5

e5f13c6bb1109d1197126921de074041
SHA1

6c21987c6231db7514ce3b4c93e2ca3df76c4902
SHA256

25b16667b3194dd3d15525eb88f274a305786de7e39fd789ff3da514379f7dcb
SHA512

203104e4a72ac6848e60c358896871ae66e35dc30dc14c7e9a399972749e062f9ebddb2c26d24a09b2e90f9a20808f49ea2cf1f6e91e7dc69e3c2de7c9a9b148
SSDEEP

3072:gA8JmK7ATVfQeVqNFZa/9KzMXJ6jTFDlAwqWut5KZMzfeAAAolo:gzIqATVfQeV2FZalKq6jtGJWuTmd

Score

10^/10

dridex 22201 botnet loader

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

e5f13c6bb1109d1197126921de074041_JaffaCakes118.dll

Resource

win7-20240221-en

dridex 22201 botnet loader

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

e5f13c6bb1109d1197126921de074041_JaffaCakes118.dll

Resource

win10v2004-20240226-en

dridex 22201 botnet loader

windows10-2004-x64

4 signatures

150 seconds

Malware Config

Extracted

Family

dridex

Botnet

22201

C2

103.82.248.59:443

54.39.98.141:6602

103.109.247.8:10443

rc4.plain

rc4.plain

Targets

- Target
  
  e5f13c6bb1109d1197126921de074041_JaffaCakes118
- Size
  
  188KB
- MD5
  
  e5f13c6bb1109d1197126921de074041
- SHA1
  
  6c21987c6231db7514ce3b4c93e2ca3df76c4902
- SHA256
  
  25b16667b3194dd3d15525eb88f274a305786de7e39fd789ff3da514379f7dcb
- SHA512
  
  203104e4a72ac6848e60c358896871ae66e35dc30dc14c7e9a399972749e062f9ebddb2c26d24a09b2e90f9a20808f49ea2cf1f6e91e7dc69e3c2de7c9a9b148
- SSDEEP
  
  3072:gA8JmK7ATVfQeVqNFZa/9KzMXJ6jTFDlAwqWut5KZMzfeAAAolo:gzIqATVfQeV2FZalKq6jtGJWuTmd
Score

10^/10

dridex 22201 botnet loader
- Dridex
  Dridex(known as Bugat/Cridex) is a form of malware that specializes in stealing bank credentials.
  botnet dridex
- Dridex Loader
  Detects Dridex both x86 and x64 loader in memory.
  botnet loader
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

dridex22201botnetloader

behavioral2

dridex22201botnetloader

© 2018-2024

Terms | Privacy