General
-
Target
JaffaCakes118_49fdc9f48ebe4682f98ba142081b66df65ed2e200e3b58453af43e7a9486216c
-
Size
184KB
-
Sample
241222-e2ndfatlbx
-
MD5
5c160cc3f0036e4364e9d090e7ff0865
-
SHA1
4ba7e16f98808c55fa940bd811f5c223efd85967
-
SHA256
49fdc9f48ebe4682f98ba142081b66df65ed2e200e3b58453af43e7a9486216c
-
SHA512
b72b45f98b2c992ed3cad4892f5dbc98d191dbbb74923bf9a27c149c0b71868e84a9be5afed33b857eb595b2a45e67ac574f34cd10c535350bb1ce7f0f98d927
-
SSDEEP
3072:liLVj+luuUXoPOK2z1WPRgg5YbW+d0Ojk1bSA5q/eaoElzoxss7:liLVCIT4WK2z1W+CUHZj4Skq/eao6oC
Malware Config
Extracted
dridex
22202
80.241.218.90:443
103.161.172.109:13786
87.98.128.76:5723
Targets
-
-
Target
JaffaCakes118_49fdc9f48ebe4682f98ba142081b66df65ed2e200e3b58453af43e7a9486216c
-
Size
184KB
-
MD5
5c160cc3f0036e4364e9d090e7ff0865
-
SHA1
4ba7e16f98808c55fa940bd811f5c223efd85967
-
SHA256
49fdc9f48ebe4682f98ba142081b66df65ed2e200e3b58453af43e7a9486216c
-
SHA512
b72b45f98b2c992ed3cad4892f5dbc98d191dbbb74923bf9a27c149c0b71868e84a9be5afed33b857eb595b2a45e67ac574f34cd10c535350bb1ce7f0f98d927
-
SSDEEP
3072:liLVj+luuUXoPOK2z1WPRgg5YbW+d0Ojk1bSA5q/eaoElzoxss7:liLVCIT4WK2z1W+CUHZj4Skq/eao6oC
Score10/10-
Dridex
Dridex(known as Bugat/Cridex) is a form of malware that specializes in stealing bank credentials.
-
Dridex family
-
Dridex Loader
Detects Dridex both x86 and x64 loader in memory.
-