dridex | 2dc73ab125bbcfcaa2ad81debaa45da08adcfe021761d04c606812bf3748df68 | Triage

Sharing

General

Target

e5a341348ce8322f94ea8ebd0d899e2a_JaffaCakes118
Size

244KB
Sample

240916-1v95hssarp
MD5

e5a341348ce8322f94ea8ebd0d899e2a
SHA1

3aa246583b5c23cf99cd29eefd85fe89c93ed9d3
SHA256

2dc73ab125bbcfcaa2ad81debaa45da08adcfe021761d04c606812bf3748df68
SHA512

daf64b2114dd09a581c219a1f8dce23b28c67d4c625e65eee58348ee472dc3dab1ff926edc589972f80f96cdec1f7bd50161904b7950c348cf26b230db32158d
SSDEEP

3072:cGH53A7kiOzJfpjPFO5k8Rbp9ieXF7AdJhCScQHltiVAjc77zOaYNk55xqKTi:3sMTUb7AFc7WTWq

Score

10^/10

dridex 10444 discovery

Malware Config

Extracted

Family

dridex

Botnet

10444

C2

151.236.219.181:443

142.4.6.57:14043

162.144.127.197:3786

103.40.116.68:5443

rc4.plain

rc4.plain

Targets

- Target
  
  e5a341348ce8322f94ea8ebd0d899e2a_JaffaCakes118
- Size
  
  244KB
- MD5
  
  e5a341348ce8322f94ea8ebd0d899e2a
- SHA1
  
  3aa246583b5c23cf99cd29eefd85fe89c93ed9d3
- SHA256
  
  2dc73ab125bbcfcaa2ad81debaa45da08adcfe021761d04c606812bf3748df68
- SHA512
  
  daf64b2114dd09a581c219a1f8dce23b28c67d4c625e65eee58348ee472dc3dab1ff926edc589972f80f96cdec1f7bd50161904b7950c348cf26b230db32158d
- SSDEEP
  
  3072:cGH53A7kiOzJfpjPFO5k8Rbp9ieXF7AdJhCScQHltiVAjc77zOaYNk55xqKTi:3sMTUb7AFc7WTWq
Score

3^/10

discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2