dridex | 272e4739650bcf3d46e105461e4cce54c2b07cb87385e732bb93b69574b5f688 | Triage

Submit
Reports

Overview

overview

Static

static

3

JaffaCakes...88.dll

windows7-x64

JaffaCakes...88.dll

windows10-2004-x64

Sharing

General

Target

JaffaCakes118_272e4739650bcf3d46e105461e4cce54c2b07cb87385e732bb93b69574b5f688
Size

161KB
Sample

241222-nm79qswndx
MD5

c0a09834071d58c8a11eef6408a0e133
SHA1

f09919a9dabf47205f397bb6f3387a6286004302
SHA256

272e4739650bcf3d46e105461e4cce54c2b07cb87385e732bb93b69574b5f688
SHA512

bf28c4bcf437208d910c984a15d97e65627e9b3f893a58a7c29a4b0c13fe6f0667c05c762ffcde8ffd291610bd05a0b66531899d975068404fab852305b32205
SSDEEP

3072:KnSuywe6x1ACSZEuNtV+TkqDXkyzbMeJRL3CNa/U9fStrveyk8TZgEd2xGkFY:ynS62Fl+pkeJl3CvRStrFl+EY0

Score

10^/10

dridex 22202 botnet discovery loader

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

JaffaCakes118_272e4739650bcf3d46e105461e4cce54c2b07cb87385e732bb93b69574b5f688.dll

Resource

win7-20240903-en

dridex 22202 botnet discovery loader

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

JaffaCakes118_272e4739650bcf3d46e105461e4cce54c2b07cb87385e732bb93b69574b5f688.dll

Resource

win10v2004-20241007-en

dridex 22202 botnet discovery loader

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Extracted

Family

dridex

Botnet

22202

C2

78.46.73.125:443

185.148.168.26:2303

66.113.160.126:8172

rc4.plain

rc4.plain

Targets

- Target
  
  JaffaCakes118_272e4739650bcf3d46e105461e4cce54c2b07cb87385e732bb93b69574b5f688
- Size
  
  161KB
- MD5
  
  c0a09834071d58c8a11eef6408a0e133
- SHA1
  
  f09919a9dabf47205f397bb6f3387a6286004302
- SHA256
  
  272e4739650bcf3d46e105461e4cce54c2b07cb87385e732bb93b69574b5f688
- SHA512
  
  bf28c4bcf437208d910c984a15d97e65627e9b3f893a58a7c29a4b0c13fe6f0667c05c762ffcde8ffd291610bd05a0b66531899d975068404fab852305b32205
- SSDEEP
  
  3072:KnSuywe6x1ACSZEuNtV+TkqDXkyzbMeJRL3CNa/U9fStrveyk8TZgEd2xGkFY:ynS62Fl+pkeJl3CvRStrFl+EY0
Score

10^/10

dridex 22202 botnet discovery loader
- Dridex
  Dridex(known as Bugat/Cridex) is a form of malware that specializes in stealing bank credentials.
  botnet dridex
- Dridex family
  dridex
- Dridex Loader
  Detects Dridex both x86 and x64 loader in memory.
  botnet loader
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

dridex22202botnetdiscoveryloader

behavioral2

dridex22202botnetdiscoveryloader

© 2018-2025

Terms | Privacy