dridex | df71bb502e838c9732ebcaf083b4781958ffa3fa4ad5052c463c4a0e6970523c | Triage

Sharing

General

Target

96bbc5a1c87406d3811a0fbdaa6a5800_JaffaCakes118
Size

204KB
Sample

240605-akhpeaha36
MD5

96bbc5a1c87406d3811a0fbdaa6a5800
SHA1

9fd201c1b94ee62c04239939bc9dfc053a41bf02
SHA256

df71bb502e838c9732ebcaf083b4781958ffa3fa4ad5052c463c4a0e6970523c
SHA512

356a0597c8cb63b980ceb112a5bfffcb80c636ec2625ec6b24a4468c226a024009841a29edea5d7be7cbd7d0384f9d77881caf614a5a3cf9183c21f5ba198e50
SSDEEP

1536:r5xYwjU1FRIcRW2oJkw4HU2nI+Ta+v7iawLRZFfHPe/h/5DH04NumpC9dQpF+k2i:rfVAOcNWDtPeDoCumpC7QpF+5yW27o2

Score

10^/10

dridex botnet

Malware Config

Extracted

Family

dridex

C2

5.196.15.119:443

46.105.131.72:443

157.7.163.144:3389

199.119.78.9:4143

Targets

- Target
  
  96bbc5a1c87406d3811a0fbdaa6a5800_JaffaCakes118
- Size
  
  204KB
- MD5
  
  96bbc5a1c87406d3811a0fbdaa6a5800
- SHA1
  
  9fd201c1b94ee62c04239939bc9dfc053a41bf02
- SHA256
  
  df71bb502e838c9732ebcaf083b4781958ffa3fa4ad5052c463c4a0e6970523c
- SHA512
  
  356a0597c8cb63b980ceb112a5bfffcb80c636ec2625ec6b24a4468c226a024009841a29edea5d7be7cbd7d0384f9d77881caf614a5a3cf9183c21f5ba198e50
- SSDEEP
  
  1536:r5xYwjU1FRIcRW2oJkw4HU2nI+Ta+v7iawLRZFfHPe/h/5DH04NumpC9dQpF+k2i:rfVAOcNWDtPeDoCumpC7QpF+5yW27o2
Score

10^/10

dridex botnet
- Dridex
  Dridex(known as Bugat/Cridex) is a form of malware that specializes in stealing bank credentials.
  botnet dridex
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2