Extracted

• • Target

    547e81ee477ae73f30b4435bfa093d48082a0edfa3186a0e4af2eeab60b8d8e0.dll

  • Size

    184KB

  • MD5

    d34090815345e28dd3a62aa3872e472c

  • SHA1

    abea10f0071e1f3785b16c55826c544b157ffe79

  • SHA256

    547e81ee477ae73f30b4435bfa093d48082a0edfa3186a0e4af2eeab60b8d8e0

  • SHA512

    34739649a44dc7f2a0cca1ce07aecbbc3b4b5a75117572cdef2708eac3f75a74d0ec6ee0888fb42e8dd215a0179b15cb612819cf4fba4615dc47653445a324f5

  • SSDEEP

    3072:sZ/Aq5HJv6rBXHdH1iF3P74buGdSg4GeLfqMsnwXB:sbRQBXHtq3PUbt3te7Bsn

  Score

  10^/10

  dridex111botnetdiscoveryevasionloadertrojan

  • Dridex

    Dridex(known as Bugat/Cridex) is a form of malware that specializes in stealing bank credentials.

    botnetdridex

  • Dridex Loader

    Detects Dridex both x86 and x64 loader in memory.

    botnetloader

  • Blocklisted process makes network request

  • Checks installed software on the system

    Looks up Uninstall key entries in the registry to enumerate software on the system.

    discovery

  • Checks whether UAC is enabled

    evasiontrojan
  behavioral1behavioral2