dridex | eaf8c9cdf5d3fe908906721d1dddd7d46f47e8b9780743b28e5afc322d0bcebc | Triage

Sharing

General

Target

eaf8c9cdf5d3fe908906721d1dddd7d46f47e8b9780743b28e5afc322d0bcebc
Size

311KB
Sample

240417-p86tgahh2y
MD5

0a4a4194e0eb5d639d5c96d73b1e4b21
SHA1

5b60edc4702d6add58b4352bb5eeb71b6f7d2f73
SHA256

eaf8c9cdf5d3fe908906721d1dddd7d46f47e8b9780743b28e5afc322d0bcebc
SHA512

cee48db84ea907a34fa8d3b145d797ee70b051197c4ad0fe292a60f3ae39bd689f607b850ad3b416c2ebe89384a46f90d9777fd96abc7048484293d6abf9bfc1
SSDEEP

6144:LuoxS2cxU6BkxJduGHJ/fVYsCbGHEOv6CavgiRaz8RKgB3aRXT:Luen3xTpN3vH6CaDRw8RKgmT

Score

10^/10

dridex 10444 botnet

Malware Config

Extracted

Family

dridex

Botnet

10444

C2

194.225.58.214:443

211.110.44.63:5353

69.164.207.140:3388

198.57.200.100:3786

rc4.plain

rc4.plain

Targets

- Target
  
  ce6b05e2593182af90dc4e8fd315240bec81cf0734a2590ee864a05bbffb014c.exe
- Size
  
  518KB
- MD5
  
  153bc84ce38485a27ee114e9bcd4eef9
- SHA1
  
  821ced6f8b1083a085f224210f82c0f301887f7a
- SHA256
  
  ce6b05e2593182af90dc4e8fd315240bec81cf0734a2590ee864a05bbffb014c
- SHA512
  
  d9b0851d74424c348f530152332eed376b9231e0e9832588143d5dc39c5151d2e654c7931c1ba2a1098f0a3d077ec13aeaab9b174f8a2d4f870d87e43c536fcf
- SSDEEP
  
  12288:B+8mHYABWaGPleAupQFpa7M5YXsXx5pgKB/Z:RmHBXGPlcQF87M5fBHBZ
Score

10^/10

dridex 10444 botnet
- Dridex
  Dridex(known as Bugat/Cridex) is a form of malware that specializes in stealing bank credentials.
  botnet dridex
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

dridex10444botnet

behavioral2

dridex10444botnet