dridex | 83c1e53b16b87a658ee652ae559c902fb16a94bb2715b0312165bb090a9ea3de | Triage

Submit
Reports

Overview

overview

Static

static

3

83c1e53b16...de.dll

windows7-x64

83c1e53b16...de.dll

windows10-2004-x64

Sharing

General

Target

83c1e53b16b87a658ee652ae559c902fb16a94bb2715b0312165bb090a9ea3de
Size

180KB
Sample

240914-wf3dxaxdlf
MD5

9d7da4504d7879636e9e2aedd2d5a763
SHA1

1696ff6a3a51d4a48ca64759a00f8e6385f83334
SHA256

83c1e53b16b87a658ee652ae559c902fb16a94bb2715b0312165bb090a9ea3de
SHA512

0fd6bfa0b83cad077d723f425fe3d76f9518ba55e9c63b54cfdabc2e7942244bc015e6f577987444688932a8dff2be87ec529a22e63471394c4653aa12f80eca
SSDEEP

3072:m3U+o/fwAUfM8+NmXhjlAZ+SWlxT5H3zipQIoZeErkxUNBG0:iUZYxfM8+YXfq+SOxTxjipQjzk3

Score

10^/10

dridex 111 botnet discovery loader

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

83c1e53b16b87a658ee652ae559c902fb16a94bb2715b0312165bb090a9ea3de.dll

Resource

win7-20240708-en

dridex 111 botnet discovery loader

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

83c1e53b16b87a658ee652ae559c902fb16a94bb2715b0312165bb090a9ea3de.dll

Resource

win10v2004-20240802-en

dridex 111 botnet discovery loader

windows10-2004-x64

4 signatures

150 seconds

Malware Config

Extracted

Family

dridex

Botnet

111

C2

94.126.8.2:443

81.2.235.131:1688

178.63.156.139:3388

rc4.plain

rc4.plain

Targets

- Target
  
  83c1e53b16b87a658ee652ae559c902fb16a94bb2715b0312165bb090a9ea3de
- Size
  
  180KB
- MD5
  
  9d7da4504d7879636e9e2aedd2d5a763
- SHA1
  
  1696ff6a3a51d4a48ca64759a00f8e6385f83334
- SHA256
  
  83c1e53b16b87a658ee652ae559c902fb16a94bb2715b0312165bb090a9ea3de
- SHA512
  
  0fd6bfa0b83cad077d723f425fe3d76f9518ba55e9c63b54cfdabc2e7942244bc015e6f577987444688932a8dff2be87ec529a22e63471394c4653aa12f80eca
- SSDEEP
  
  3072:m3U+o/fwAUfM8+NmXhjlAZ+SWlxT5H3zipQIoZeErkxUNBG0:iUZYxfM8+YXfq+SOxTxjipQjzk3
Score

10^/10

dridex 111 botnet discovery loader
- Dridex
  Dridex(known as Bugat/Cridex) is a form of malware that specializes in stealing bank credentials.
  botnet dridex
- Dridex Loader
  Detects Dridex both x86 and x64 loader in memory.
  botnet loader
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

dridex111botnetdiscoveryloader

behavioral2

dridex111botnetdiscoveryloader

© 2018-2025

Terms | Privacy