General
-
Target
f7741f859cde80004d03ae73dc883cda2839c4bc3ae4b3eaec12545221ce6b37
-
Size
700KB
-
Sample
241015-dvhzpssana
-
MD5
01bd9d7bb1409146b8a1cd2065d17056
-
SHA1
042d82677a3cbc0de8776cab406c13edd561fa55
-
SHA256
f7741f859cde80004d03ae73dc883cda2839c4bc3ae4b3eaec12545221ce6b37
-
SHA512
caf87440b65c8349b4974ebeac64f79e0a052c346827bc9813a906f264935276661ab5c37ce34e586b7c2b15825c7eec144188ae696698e3cef226896e84dda6
-
SSDEEP
12288:aqJ4FzHTx8cOjEIonNgQLtXKFg2t/KRi4Baed:aqGBHTxvt+g2gYed
Malware Config
Targets
-
-
Target
f7741f859cde80004d03ae73dc883cda2839c4bc3ae4b3eaec12545221ce6b37
-
Size
700KB
-
MD5
01bd9d7bb1409146b8a1cd2065d17056
-
SHA1
042d82677a3cbc0de8776cab406c13edd561fa55
-
SHA256
f7741f859cde80004d03ae73dc883cda2839c4bc3ae4b3eaec12545221ce6b37
-
SHA512
caf87440b65c8349b4974ebeac64f79e0a052c346827bc9813a906f264935276661ab5c37ce34e586b7c2b15825c7eec144188ae696698e3cef226896e84dda6
-
SSDEEP
12288:aqJ4FzHTx8cOjEIonNgQLtXKFg2t/KRi4Baed:aqGBHTxvt+g2gYed
Score10/10-
Dridex
Dridex(known as Bugat/Cridex) is a form of malware that specializes in stealing bank credentials.
-
Dridex Shellcode
Detects Dridex Payload shellcode injected in Explorer process.
-
Dridex payload
Detects Dridex x64 core DLL in memory.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
Checks whether UAC is enabled
-