dridex | 43cef6768af422a8581134dd9f912c3dbfa566d30cad58d270e151f4c877dbf2 | Triage

Submit
Reports

Overview

overview

Static

static

3

43cef6768a...f2.dll

windows7-x64

43cef6768a...f2.dll

windows10-2004-x64

Sharing

General

Target

43cef6768af422a8581134dd9f912c3dbfa566d30cad58d270e151f4c877dbf2
Size

180KB
Sample

240423-pl27rsgb4t
MD5

fa79a77a543c98f91750d3ef0e96e75b
SHA1

516c9817fe52108cc1594bf9700d9ca57e386433
SHA256

43cef6768af422a8581134dd9f912c3dbfa566d30cad58d270e151f4c877dbf2
SHA512

a8e3d30fe47952d1e79dce48075324b7b6728d46a88e50873bde91a60d0152ed6bb9dff14f5c99f5e2d8e2f8f76a5eed193cbe4cef70902ac4deb8736b0a7bbe
SSDEEP

3072:13U+o/fwAUfM8+NmXhjlAZ+SWlxT5H3zipQIoZeErkxUNBG0:FUZYxfM8+YXfq+SOxTxjipQjzk3

Score

10^/10

dridex 111 botnet loader

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

43cef6768af422a8581134dd9f912c3dbfa566d30cad58d270e151f4c877dbf2.dll

Resource

win7-20231129-en

dridex 111 botnet loader

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

43cef6768af422a8581134dd9f912c3dbfa566d30cad58d270e151f4c877dbf2.dll

Resource

win10v2004-20240412-en

dridex 111 botnet loader

windows10-2004-x64

3 signatures

150 seconds

Malware Config

Extracted

Family

dridex

Botnet

111

C2

94.126.8.2:443

81.2.235.131:1688

178.63.156.139:3388

rc4.plain

rc4.plain

Targets

- Target
  
  43cef6768af422a8581134dd9f912c3dbfa566d30cad58d270e151f4c877dbf2
- Size
  
  180KB
- MD5
  
  fa79a77a543c98f91750d3ef0e96e75b
- SHA1
  
  516c9817fe52108cc1594bf9700d9ca57e386433
- SHA256
  
  43cef6768af422a8581134dd9f912c3dbfa566d30cad58d270e151f4c877dbf2
- SHA512
  
  a8e3d30fe47952d1e79dce48075324b7b6728d46a88e50873bde91a60d0152ed6bb9dff14f5c99f5e2d8e2f8f76a5eed193cbe4cef70902ac4deb8736b0a7bbe
- SSDEEP
  
  3072:13U+o/fwAUfM8+NmXhjlAZ+SWlxT5H3zipQIoZeErkxUNBG0:FUZYxfM8+YXfq+SOxTxjipQjzk3
Score

10^/10

dridex 111 botnet loader
- Dridex
  Dridex(known as Bugat/Cridex) is a form of malware that specializes in stealing bank credentials.
  botnet dridex
- Dridex Loader
  Detects Dridex both x86 and x64 loader in memory.
  botnet loader
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

dridex111botnetloader

behavioral2

dridex111botnetloader

© 2018-2024

Terms | Privacy