General

  • Target

    b79de8bd575fd4c340b9fa4352696533_JaffaCakes118

  • Size

    1.2MB

  • Sample

    240822-pj8a1awgpb

  • MD5

    b79de8bd575fd4c340b9fa4352696533

  • SHA1

    7e1b2fab1003993cb117cae87b239b42e657a56d

  • SHA256

    5f809c22a4793c5f79ce37d5621580998d890837537e420d638ef1681964220d

  • SHA512

    1d573f55c41b7315076e602eccc5a5830fc284e63df96863350c19cb21f363703759ab404a324298ee9c4731b9399041814c5d53e194f15bc21c486118cf5d0a

  • SSDEEP

    24576:vuYfg4LhHr4NFXKJO1aUiDBvZ2+ITHmpclO9N:R9cKrUqZWLAcU

Malware Config

Targets

    • Target

      b79de8bd575fd4c340b9fa4352696533_JaffaCakes118

    • Size

      1.2MB

    • MD5

      b79de8bd575fd4c340b9fa4352696533

    • SHA1

      7e1b2fab1003993cb117cae87b239b42e657a56d

    • SHA256

      5f809c22a4793c5f79ce37d5621580998d890837537e420d638ef1681964220d

    • SHA512

      1d573f55c41b7315076e602eccc5a5830fc284e63df96863350c19cb21f363703759ab404a324298ee9c4731b9399041814c5d53e194f15bc21c486118cf5d0a

    • SSDEEP

      24576:vuYfg4LhHr4NFXKJO1aUiDBvZ2+ITHmpclO9N:R9cKrUqZWLAcU

    • Dridex

      Dridex(known as Bugat/Cridex) is a form of malware that specializes in stealing bank credentials.

    • Dridex Shellcode

      Detects Dridex Payload shellcode injected in Explorer process.

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

    • Checks whether UAC is enabled

MITRE ATT&CK Enterprise v15

Tasks

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.