dridex | 5d2e121c650aea3012ab7891236953dd3b09672788a7be2e4a74716c59e94d98 | Triage

Sharing

General

Target

818eb40d9ae3bda113194f718f70db08_JaffaCakes118
Size

324KB
Sample

240529-xnpcpaeb6z
MD5

818eb40d9ae3bda113194f718f70db08
SHA1

2346825b6b6dea431231a15941ce61058855b197
SHA256

5d2e121c650aea3012ab7891236953dd3b09672788a7be2e4a74716c59e94d98
SHA512

f49b847f3776e8b25c9e684f38c9559d2398975c6ee0b5c74e6401e203f500e4fee025999fb5b1915caeb27ca84ad082711f3e111e2708989163faa50aa29643
SSDEEP

6144:dudJKJ4hF7popQTRq3va4jl6u31Ut+Ji370HnBs4NeuVCC:w7yUReva4jlNoQnBXek1

Score

10^/10

dridex 10444 botnet

Malware Config

Extracted

Family

dridex

Botnet

10444

C2

51.75.24.85:443

46.22.116.163:3074

173.249.46.113:3889

192.241.174.45:4443

rc4.plain

rc4.plain

Targets

- Target
  
  818eb40d9ae3bda113194f718f70db08_JaffaCakes118
- Size
  
  324KB
- MD5
  
  818eb40d9ae3bda113194f718f70db08
- SHA1
  
  2346825b6b6dea431231a15941ce61058855b197
- SHA256
  
  5d2e121c650aea3012ab7891236953dd3b09672788a7be2e4a74716c59e94d98
- SHA512
  
  f49b847f3776e8b25c9e684f38c9559d2398975c6ee0b5c74e6401e203f500e4fee025999fb5b1915caeb27ca84ad082711f3e111e2708989163faa50aa29643
- SSDEEP
  
  6144:dudJKJ4hF7popQTRq3va4jl6u31Ut+Ji370HnBs4NeuVCC:w7yUReva4jlNoQnBXek1
Score

10^/10

dridex 10444 botnet
- Dridex
  Dridex(known as Bugat/Cridex) is a form of malware that specializes in stealing bank credentials.
  botnet dridex
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

dridex10444botnet

behavioral2

dridex10444botnet