dridex | 27bbe7427232a77b70e1ca056f5d63da64a04d03b420c58c9cf0ac3b113e04d5 | Triage

Submit
Reports

Overview

overview

Static

static

3

27bbe74272...d5.dll

windows7-x64

27bbe74272...d5.dll

windows10-2004-x64

Sharing

General

Target

27bbe7427232a77b70e1ca056f5d63da64a04d03b420c58c9cf0ac3b113e04d5
Size

180KB
Sample

240425-wvqcwsdd65
MD5

89560f98fd5404f0dda37b026e33b6b4
SHA1

2b9d4dfd8f62d0e8679cd5a080500fbe799526e1
SHA256

27bbe7427232a77b70e1ca056f5d63da64a04d03b420c58c9cf0ac3b113e04d5
SHA512

2a85d8011b1ae1742de1c0507bf148ebd7e99216352e81f248609e6a0db20db15312bc429bad18eb25016bdd353dba66b789edaba43bccedb2d31f16273b3fa8
SSDEEP

3072:i3U+o/fwAUfM8+NmXhjlAZ+SWlxT5H3zipQIoZeErkxUNBG0:2UZYxfM8+YXfq+SOxTxjipQjzk3

Score

10^/10

dridex 111 botnet loader

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

27bbe7427232a77b70e1ca056f5d63da64a04d03b420c58c9cf0ac3b113e04d5.dll

Resource

win7-20231129-en

dridex 111 botnet loader

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

27bbe7427232a77b70e1ca056f5d63da64a04d03b420c58c9cf0ac3b113e04d5.dll

Resource

win10v2004-20240412-en

dridex 111 botnet loader

windows10-2004-x64

3 signatures

150 seconds

Malware Config

Extracted

Family

dridex

Botnet

111

C2

94.126.8.2:443

81.2.235.131:1688

178.63.156.139:3388

rc4.plain

rc4.plain

Targets

- Target
  
  27bbe7427232a77b70e1ca056f5d63da64a04d03b420c58c9cf0ac3b113e04d5
- Size
  
  180KB
- MD5
  
  89560f98fd5404f0dda37b026e33b6b4
- SHA1
  
  2b9d4dfd8f62d0e8679cd5a080500fbe799526e1
- SHA256
  
  27bbe7427232a77b70e1ca056f5d63da64a04d03b420c58c9cf0ac3b113e04d5
- SHA512
  
  2a85d8011b1ae1742de1c0507bf148ebd7e99216352e81f248609e6a0db20db15312bc429bad18eb25016bdd353dba66b789edaba43bccedb2d31f16273b3fa8
- SSDEEP
  
  3072:i3U+o/fwAUfM8+NmXhjlAZ+SWlxT5H3zipQIoZeErkxUNBG0:2UZYxfM8+YXfq+SOxTxjipQjzk3
Score

10^/10

dridex 111 botnet loader
- Dridex
  Dridex(known as Bugat/Cridex) is a form of malware that specializes in stealing bank credentials.
  botnet dridex
- Dridex Loader
  Detects Dridex both x86 and x64 loader in memory.
  botnet loader
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

dridex111botnetloader

behavioral2

dridex111botnetloader

© 2018-2024

Terms | Privacy