General

  • Target

    9c9ca118372034963b853048c0a67740N.exe

  • Size

    184KB

  • Sample

    240821-bdmv8awdmj

  • MD5

    9c9ca118372034963b853048c0a67740

  • SHA1

    452350d790b51ee57fba7d5220c2464a689d3e08

  • SHA256

    ca76af1f172494f6eedc6731191e6ab96df2ac2cd32576ba6c3c3d3c3eeef61a

  • SHA512

    504dcce53539ec524a0caddc191276d45f995d0e298d66caaa74e47cbc8086c849042ab610b546ee28dbfc78e1a662ba1b5c0048c7f3dcb306902d02df376cf8

  • SSDEEP

    3072:092qSmHOhnWpPI1ybmJIiC00PArIojHTYVBCn+rs3Ss3qLMTorLA:09NSMOEpQ1Q3ODAr+VE

Malware Config

Extracted

Family

dridex

Botnet

22203

C2

80.241.218.90:443

103.161.172.109:13786

87.98.128.76:5723

rc4.plain
1
XH2KyJtcJ7RSk5n0Ak2zUIsoefdhHZlKRYf
rc4.plain
1
URDxTEV0tJv3X8cTa1keYqA5zuirKFaSgjRbMNOWs8y9bq8yMueIkbBUICwM5NDdLKJNBX8

Targets

    • Target

      9c9ca118372034963b853048c0a67740N.exe

    • Size

      184KB

    • MD5

      9c9ca118372034963b853048c0a67740

    • SHA1

      452350d790b51ee57fba7d5220c2464a689d3e08

    • SHA256

      ca76af1f172494f6eedc6731191e6ab96df2ac2cd32576ba6c3c3d3c3eeef61a

    • SHA512

      504dcce53539ec524a0caddc191276d45f995d0e298d66caaa74e47cbc8086c849042ab610b546ee28dbfc78e1a662ba1b5c0048c7f3dcb306902d02df376cf8

    • SSDEEP

      3072:092qSmHOhnWpPI1ybmJIiC00PArIojHTYVBCn+rs3Ss3qLMTorLA:09NSMOEpQ1Q3ODAr+VE

    • Dridex

      Dridex(known as Bugat/Cridex) is a form of malware that specializes in stealing bank credentials.

    • Dridex Loader

      Detects Dridex both x86 and x64 loader in memory.

MITRE ATT&CK Enterprise v15

Tasks

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.