dridex | ec1a6e15a90445b7b048927c9a46742424a67d129686a30486562a23831d59aa | Triage

Sharing

General

Target

4ba953a32ac41e1b5097f684b00a7d70N.exe
Size

117KB
Sample

240901-fvadnssfpc
MD5

4ba953a32ac41e1b5097f684b00a7d70
SHA1

79aa3a0868710a51d7b15001ce28f93cc8f41f4f
SHA256

ec1a6e15a90445b7b048927c9a46742424a67d129686a30486562a23831d59aa
SHA512

a2bbb1ea8dc5fbfd631f16c37ffc15c51dee3c745c31453f457070966e13ea0b2fe424aa06cbcbd54f67c8db9474e68282cf5529be24ff93a71a43aebaca248f
SSDEEP

3072:iQ7UKo8ztdcDu3FZ0/497Vafu6KRWoEabs1s:iYUKoAtdcDu1iw3ghuWQu

Score

10^/10

dridex 22203 botnet discovery loader

Malware Config

Extracted

Family

dridex

Botnet

22203

C2

80.241.218.90:443

103.161.172.109:13786

87.98.128.76:5723

rc4.plain

rc4.plain

Targets

- Target
  
  4ba953a32ac41e1b5097f684b00a7d70N.exe
- Size
  
  117KB
- MD5
  
  4ba953a32ac41e1b5097f684b00a7d70
- SHA1
  
  79aa3a0868710a51d7b15001ce28f93cc8f41f4f
- SHA256
  
  ec1a6e15a90445b7b048927c9a46742424a67d129686a30486562a23831d59aa
- SHA512
  
  a2bbb1ea8dc5fbfd631f16c37ffc15c51dee3c745c31453f457070966e13ea0b2fe424aa06cbcbd54f67c8db9474e68282cf5529be24ff93a71a43aebaca248f
- SSDEEP
  
  3072:iQ7UKo8ztdcDu3FZ0/497Vafu6KRWoEabs1s:iYUKoAtdcDu1iw3ghuWQu
Score

3^/10

discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

botnetloader22203dridex

behavioral1

behavioral2