dridex | def3ac5ace8dd6282de91df72562e8588d2f202cff5fc56156868ac7d308e691 | Triage

Submit
Reports

Overview

overview

Static

static

3

9b4b160aa4...0N.dll

windows7-x64

9b4b160aa4...0N.dll

windows10-2004-x64

Sharing

General

Target

9b4b160aa40b90652de826f86ad87ef0N.exe
Size

184KB
Sample

240814-jvbtaa1dld
MD5

9b4b160aa40b90652de826f86ad87ef0
SHA1

96d57762981e3f1dc4a8711c1e74d293c97e64d6
SHA256

def3ac5ace8dd6282de91df72562e8588d2f202cff5fc56156868ac7d308e691
SHA512

d1ccb76a89b3f3c53c912e5e3ba886975c5864c5edf67b7762b95653341992c0876130733bb210038a4ef4e078656b306c982e007bd4081d66fdaa8b5a67d0b2
SSDEEP

3072:YW8WgWhVnmr6k/6zsRJLNqTXvMU9tb+/HU6ngm1Wx9ixCH0u:z8qh+66QsRdNiBW/06ngm1WexC

Score

10^/10

dridex 22203 botnet discovery loader

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

9b4b160aa40b90652de826f86ad87ef0N.dll

Resource

win7-20240708-en

dridex 22203 botnet discovery loader

windows7-x64

5 signatures

120 seconds

Behavioral task

behavioral2

Sample

9b4b160aa40b90652de826f86ad87ef0N.dll

Resource

win10v2004-20240802-en

dridex 22203 botnet discovery loader

windows10-2004-x64

5 signatures

120 seconds

Malware Config

Extracted

Family

dridex

Botnet

22203

C2

103.75.201.2:443

158.223.1.108:6225

165.22.28.242:4664

rc4.plain

rc4.plain

Targets

- Target
  
  9b4b160aa40b90652de826f86ad87ef0N.exe
- Size
  
  184KB
- MD5
  
  9b4b160aa40b90652de826f86ad87ef0
- SHA1
  
  96d57762981e3f1dc4a8711c1e74d293c97e64d6
- SHA256
  
  def3ac5ace8dd6282de91df72562e8588d2f202cff5fc56156868ac7d308e691
- SHA512
  
  d1ccb76a89b3f3c53c912e5e3ba886975c5864c5edf67b7762b95653341992c0876130733bb210038a4ef4e078656b306c982e007bd4081d66fdaa8b5a67d0b2
- SSDEEP
  
  3072:YW8WgWhVnmr6k/6zsRJLNqTXvMU9tb+/HU6ngm1Wx9ixCH0u:z8qh+66QsRdNiBW/06ngm1WexC
Score

10^/10

dridex 22203 botnet discovery loader
- Dridex
  Dridex(known as Bugat/Cridex) is a form of malware that specializes in stealing bank credentials.
  botnet dridex
- Dridex Loader
  Detects Dridex both x86 and x64 loader in memory.
  botnet loader
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

dridex22203botnetdiscoveryloader

behavioral2

dridex22203botnetdiscoveryloader

© 2018-2025

Terms | Privacy