General
-
Target
4910261322b80f6a1ad7805e65c7206b_JaffaCakes118
-
Size
1.2MB
-
Sample
240516-cjy14sga38
-
MD5
4910261322b80f6a1ad7805e65c7206b
-
SHA1
900b7df517f5befb002d3b84c8f3cffd4c3ee2e7
-
SHA256
ddb62e8b81455884c52c5b8b7834ceab3e6c46cc2083af53d3cd1c69c43b9d32
-
SHA512
bb0d37637c1ce454e9135dd7da54ab720f7701d6ca8f6356231dcff29a06606c275ac7b85ee3e1084edfadfcc4d00f446c7596948b5a43b2f3da6f42c6945698
-
SSDEEP
24576:ryTonNVlKTt/Q5ECvVP7hpJMvjtKpvPf9+m6kLRqgSyI:ryWRKTt/QlPVp3h9
Malware Config
Targets
-
-
Target
4910261322b80f6a1ad7805e65c7206b_JaffaCakes118
-
Size
1.2MB
-
MD5
4910261322b80f6a1ad7805e65c7206b
-
SHA1
900b7df517f5befb002d3b84c8f3cffd4c3ee2e7
-
SHA256
ddb62e8b81455884c52c5b8b7834ceab3e6c46cc2083af53d3cd1c69c43b9d32
-
SHA512
bb0d37637c1ce454e9135dd7da54ab720f7701d6ca8f6356231dcff29a06606c275ac7b85ee3e1084edfadfcc4d00f446c7596948b5a43b2f3da6f42c6945698
-
SSDEEP
24576:ryTonNVlKTt/Q5ECvVP7hpJMvjtKpvPf9+m6kLRqgSyI:ryWRKTt/QlPVp3h9
Score10/10-
Dridex
Dridex(known as Bugat/Cridex) is a form of malware that specializes in stealing bank credentials.
-
Dridex Shellcode
Detects Dridex Payload shellcode injected in Explorer process.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
Checks whether UAC is enabled
-