dridex | ca76af1f172494f6eedc6731191e6ab96df2ac2cd32576ba6c3c3d3c3eeef61a | Triage

Submit
Reports

Overview

overview

Static

static

3

9c9ca11837...0N.dll

windows7-x64

9c9ca11837...0N.dll

windows10-2004-x64

Sharing

General

Target

9c9ca118372034963b853048c0a67740N.exe
Size

184KB
Sample

240821-bdmv8awdmj
MD5

9c9ca118372034963b853048c0a67740
SHA1

452350d790b51ee57fba7d5220c2464a689d3e08
SHA256

ca76af1f172494f6eedc6731191e6ab96df2ac2cd32576ba6c3c3d3c3eeef61a
SHA512

504dcce53539ec524a0caddc191276d45f995d0e298d66caaa74e47cbc8086c849042ab610b546ee28dbfc78e1a662ba1b5c0048c7f3dcb306902d02df376cf8
SSDEEP

3072:092qSmHOhnWpPI1ybmJIiC00PArIojHTYVBCn+rs3Ss3qLMTorLA:09NSMOEpQ1Q3ODAr+VE

Score

10^/10

dridex 22203 botnet discovery loader

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

9c9ca118372034963b853048c0a67740N.dll

Resource

win7-20240705-en

dridex 22203 botnet discovery loader

windows7-x64

5 signatures

120 seconds

Behavioral task

behavioral2

Sample

9c9ca118372034963b853048c0a67740N.dll

Resource

win10v2004-20240802-en

dridex 22203 botnet discovery loader

windows10-2004-x64

5 signatures

120 seconds

Malware Config

Extracted

Family

dridex

Botnet

22203

C2

80.241.218.90:443

103.161.172.109:13786

87.98.128.76:5723

rc4.plain

rc4.plain

Targets

- Target
  
  9c9ca118372034963b853048c0a67740N.exe
- Size
  
  184KB
- MD5
  
  9c9ca118372034963b853048c0a67740
- SHA1
  
  452350d790b51ee57fba7d5220c2464a689d3e08
- SHA256
  
  ca76af1f172494f6eedc6731191e6ab96df2ac2cd32576ba6c3c3d3c3eeef61a
- SHA512
  
  504dcce53539ec524a0caddc191276d45f995d0e298d66caaa74e47cbc8086c849042ab610b546ee28dbfc78e1a662ba1b5c0048c7f3dcb306902d02df376cf8
- SSDEEP
  
  3072:092qSmHOhnWpPI1ybmJIiC00PArIojHTYVBCn+rs3Ss3qLMTorLA:09NSMOEpQ1Q3ODAr+VE
Score

10^/10

dridex 22203 botnet discovery loader
- Dridex
  Dridex(known as Bugat/Cridex) is a form of malware that specializes in stealing bank credentials.
  botnet dridex
- Dridex Loader
  Detects Dridex both x86 and x64 loader in memory.
  botnet loader
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

dridex22203botnetdiscoveryloader

behavioral2

dridex22203botnetdiscoveryloader

© 2018-2025

Terms | Privacy