Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

3

fd1ec474cb...18.dll

windows7-x64

10

fd1ec474cb...18.dll

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    fd1ec474cbf8b9c210c8a83163e0e651_JaffaCakes118

  • Size

    188KB

  • Sample

    240420-tcpyascb54

  • MD5

    fd1ec474cbf8b9c210c8a83163e0e651

  • SHA1

    c4abd20a42efcbbc9be87d0ad3da24673412a88d

  • SHA256

    5afa5ef2d9033f20639c2962e8dff2f6da3ac83956c70e27a164fb8c7c0894b4

  • SHA512

    0941cdb93907624b7523eb3ae5aea0acc9925ae0cce877079c07233e187848bef2e9197ffe814f369c635873445a34a6d7fea8bccd1f03b5f7e58606b64d6d54

  • SSDEEP

    3072:3A8JmK7ATVfQeVqNFZa/9KzMXJ6jTFDlAwqWut5KZMzfeAAAoOo:3zIqATVfQeV2FZalKq6jtGJWuTmd

Score
10/10
dridex22201botnetloader

Malware Config

Extracted

Family

dridex

Botnet

22201

C2

103.82.248.59:443

54.39.98.141:6602

103.109.247.8:10443
rc4.plain
rc4.plain

Targets

    • Target

      fd1ec474cbf8b9c210c8a83163e0e651_JaffaCakes118

    • Size

      188KB

    • MD5

      fd1ec474cbf8b9c210c8a83163e0e651

    • SHA1

      c4abd20a42efcbbc9be87d0ad3da24673412a88d

    • SHA256

      5afa5ef2d9033f20639c2962e8dff2f6da3ac83956c70e27a164fb8c7c0894b4

    • SHA512

      0941cdb93907624b7523eb3ae5aea0acc9925ae0cce877079c07233e187848bef2e9197ffe814f369c635873445a34a6d7fea8bccd1f03b5f7e58606b64d6d54

    • SSDEEP

      3072:3A8JmK7ATVfQeVqNFZa/9KzMXJ6jTFDlAwqWut5KZMzfeAAAoOo:3zIqATVfQeV2FZalKq6jtGJWuTmd

    Score
    10/10
    dridex22201botnetloader

    • Dridex

      Dridex(known as Bugat/Cridex) is a form of malware that specializes in stealing bank credentials.

      botnetdridex

    • Dridex Loader

      Detects Dridex both x86 and x64 loader in memory.

      botnetloader
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks