General
-
Target
wiui4d6ph.zip.malware
-
Size
664KB
-
Sample
240506-v2bmmsbf7x
-
MD5
53e58e3a8798fd076d02adc2ce902bbb
-
SHA1
19a3ae4067f3272dd83a2363856d46790233dca4
-
SHA256
a095a17954dbbb6fc024c83f689abfe069745b1c006463524263f091a31a0f6a
-
SHA512
cf0b3e04347530c01fb6bc85b1eafd7cd7442abd8fc8d47ca4a40f8746842cc9a5ee508a0c5faa4e2c2834d9c33f164473e8fc98241cfd0a9ad8be0cbab1e018
-
SSDEEP
12288:d/0Qzqf0e5i48JM+6TFKywVt6PbEYU0eyJTT/Mu9oV01u1oaEP:t0zh56n6TFKywvCbEOxDMu9oyPaEP
Static task
static1
Behavioral task
behavioral1
Sample
wiui4d6ph.zip.dll
Resource
win7-20240419-en
Malware Config
Extracted
dridex
10222
174.128.245.202:443
51.83.3.52:13786
69.64.50.41:6602
Targets
-
-
Target
wiui4d6ph.zip.malware
-
Size
664KB
-
MD5
53e58e3a8798fd076d02adc2ce902bbb
-
SHA1
19a3ae4067f3272dd83a2363856d46790233dca4
-
SHA256
a095a17954dbbb6fc024c83f689abfe069745b1c006463524263f091a31a0f6a
-
SHA512
cf0b3e04347530c01fb6bc85b1eafd7cd7442abd8fc8d47ca4a40f8746842cc9a5ee508a0c5faa4e2c2834d9c33f164473e8fc98241cfd0a9ad8be0cbab1e018
-
SSDEEP
12288:d/0Qzqf0e5i48JM+6TFKywVt6PbEYU0eyJTT/Mu9oV01u1oaEP:t0zh56n6TFKywvCbEOxDMu9oyPaEP
-
Blocklisted process makes network request
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-