dridex | 6532d36b79709920348ba770c19ec8b1f4b670453ae1f11041e71aaa7eae8f22

Resubmissions

17-10-2024 03:46

241017-eb2hda1bpf 10

17-10-2024 03:43

241017-d985fa1aqh 10

Sharing

Copy URL

Twitter E-mail

General

Target

50941e4a6f6129d5ee4efb21c8b1b3d6_JaffaCakes118
Size

212KB
Sample

241017-eb2hda1bpf
MD5

50941e4a6f6129d5ee4efb21c8b1b3d6
SHA1

747b1a0155d73afa38e826d9b7fbfa54ed8a2872
SHA256

6532d36b79709920348ba770c19ec8b1f4b670453ae1f11041e71aaa7eae8f22
SHA512

ea0aad6ac5b233be4f93ddaef53ac1fc9478cb68f454d13e0ff4523d7296047dde84a49b48e094e24cc41b5f738c3bf5ce637e7ca615666d2b9b75685dcbe2fd
SSDEEP

6144:CrQ+yRT2oGCQF2KBOwCn9DIJDlssdW5Our:xN2oGCQAKBOwCn1IJDlsTV

Score

10^/10

Malware Config

Extracted

Family

dridex

Botnet

40400

132.255.244.130:443

111.67.77.202:3389

198.50.236.57:443

45.122.223.13:8443

rc4.plain

Targets

- Target
  
  50941e4a6f6129d5ee4efb21c8b1b3d6_JaffaCakes118
- Size
  
  212KB
- MD5
  
  50941e4a6f6129d5ee4efb21c8b1b3d6
- SHA1
  
  747b1a0155d73afa38e826d9b7fbfa54ed8a2872
- SHA256
  
  6532d36b79709920348ba770c19ec8b1f4b670453ae1f11041e71aaa7eae8f22
- SHA512
  
  ea0aad6ac5b233be4f93ddaef53ac1fc9478cb68f454d13e0ff4523d7296047dde84a49b48e094e24cc41b5f738c3bf5ce637e7ca615666d2b9b75685dcbe2fd
- SSDEEP
  
  6144:CrQ+yRT2oGCQF2KBOwCn9DIJDlssdW5Our:xN2oGCQAKBOwCn1IJDlsTV
Score

3^/10

discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Browser Information Discovery

T1217

Query Registry

T1012

System Information Discovery

T1082

System Location Discovery

T1614

System Language Discovery

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks