Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

3

e92af5313a...0N.dll

windows7-x64

10

e92af5313a...0N.dll

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    e92af5313a84ead5d5a42e167974c070N

  • Size

    179KB

  • Sample

    240910-zezheawame

  • MD5

    e92af5313a84ead5d5a42e167974c070

  • SHA1

    6ec334edc70f7fded9451b7cb82bb9b027137f92

  • SHA256

    cc567a505e3e4df6bdb9fc30e00ef41006a7d22159f7cadc99d291507d7dcc68

  • SHA512

    ede283bd83b814a2c7bbbb741eecaf3b1f845fcdcb040641e5477b764d0cde71e32956290f816ccb241fb4d2c2fc96d5d5945bf5067bffadf24b7f54d186ba82

  • SSDEEP

    3072:MuCmyBVtWxZCOCA4Hpl1tv18FTETA8ocya/OyoSJPAacbnid8DOHPJ+HJG:AzWxkOP4p2EesvcDi6DOHPJF

Score
10/10
dridex22201botnetdiscoveryloader

Malware Config

Extracted

Family

dridex

Botnet

22201

C2

144.76.1.150:443

50.249.212.98:23399

104.168.154.79:5007
rc4.plain
1
YjbQeq5UMzLaqTuxGlME3hD5AZvvRe5dSrViGkA4D3iqQ
rc4.plain
1
5oO2mBtXHaMUXu5tCn6RiiaG0OpiGUDJgk3FMD9BEFejUNONblkzzEmo9zKtF

Targets

    • Target

      e92af5313a84ead5d5a42e167974c070N

    • Size

      179KB

    • MD5

      e92af5313a84ead5d5a42e167974c070

    • SHA1

      6ec334edc70f7fded9451b7cb82bb9b027137f92

    • SHA256

      cc567a505e3e4df6bdb9fc30e00ef41006a7d22159f7cadc99d291507d7dcc68

    • SHA512

      ede283bd83b814a2c7bbbb741eecaf3b1f845fcdcb040641e5477b764d0cde71e32956290f816ccb241fb4d2c2fc96d5d5945bf5067bffadf24b7f54d186ba82

    • SSDEEP

      3072:MuCmyBVtWxZCOCA4Hpl1tv18FTETA8ocya/OyoSJPAacbnid8DOHPJ+HJG:AzWxkOP4p2EesvcDi6DOHPJF

    Score
    10/10
    dridex22201botnetdiscoveryloader

    • Dridex

      Dridex(known as Bugat/Cridex) is a form of malware that specializes in stealing bank credentials.

      botnetdridex

    • Dridex Loader

      Detects Dridex both x86 and x64 loader in memory.

      botnetloader
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.