Extracted

• • Target

    f11240fb900080790ef18fa1e436f88d_JaffaCakes118

  • Size

    276KB

  • MD5

    f11240fb900080790ef18fa1e436f88d

  • SHA1

    f589e6289ea5216764825d1da2f54b4e3a06bd2c

  • SHA256

    b255a8d572e4e44f5ab8ea2bf71da47a963cfd5ba73b5c386ad55c6745cc0544

  • SHA512

    69b0cf188594a6eb9f5f7453e36d4c8cee6fdce1dbb210b53680bd5df56af9e4ecd6e02b995d543f6f42a8da41b9d1b2a794704f388198d42523504c27f0a08e

  • SSDEEP

    6144:Sg0MsHKuduGhbTDrV+GAfaQhgXJKrAvvC7je2sXfJ:/7wv8YbTt+GAfTeXJKrGa7aL

  Score

  10^/10

  dridex12333botnetdiscoveryevasiontrojan

  • Dridex

    Dridex(known as Bugat/Cridex) is a form of malware that specializes in stealing bank credentials.

    botnetdridex

  • Checks installed software on the system

    Looks up Uninstall key entries in the registry to enumerate software on the system.

    discovery

  • Checks whether UAC is enabled

    evasiontrojan
  behavioral1behavioral2