dridex | 424b81b6eab1f7df863c5b3930836a1a7b413d8cd969f6d1fcb1a19e94b2a993 | Triage

Submit
Reports

Overview

overview

Static

static

3

JaffaCakes...93.dll

windows7-x64

JaffaCakes...93.dll

windows10-2004-x64

Sharing

General

Target

JaffaCakes118_424b81b6eab1f7df863c5b3930836a1a7b413d8cd969f6d1fcb1a19e94b2a993
Size

161KB
Sample

241222-nslmxsxjgl
MD5

29f38a6d8e56413b662bef5093124b5c
SHA1

3bad7d1c1c3364343b68fc3363d3e0655b143b5b
SHA256

424b81b6eab1f7df863c5b3930836a1a7b413d8cd969f6d1fcb1a19e94b2a993
SHA512

1686057565b469e8d174787f62740702f5ae3e97b72c9cbb6755a1383d0efb27253dd9e7866fdf6f43817b7b0fe58de19cced7573b4ce08e90b9b10b68906220
SSDEEP

3072:ojSuywe6x1ACSZEuNtV+TkqDXkyzbMeJRL3CNa/U9fStrveyk8TZgEd28GkFY:YnS62Fl+pkeJl3CvRStrFl+EYN

Score

10^/10

dridex 22202 botnet discovery loader

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

JaffaCakes118_424b81b6eab1f7df863c5b3930836a1a7b413d8cd969f6d1fcb1a19e94b2a993.dll

Resource

win7-20241010-en

dridex 22202 botnet discovery loader

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

JaffaCakes118_424b81b6eab1f7df863c5b3930836a1a7b413d8cd969f6d1fcb1a19e94b2a993.dll

Resource

win10v2004-20241007-en

dridex 22202 botnet discovery loader

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Extracted

Family

dridex

Botnet

22202

C2

78.46.73.125:443

185.148.168.26:2303

66.113.160.126:8172

rc4.plain

rc4.plain

Targets

- Target
  
  JaffaCakes118_424b81b6eab1f7df863c5b3930836a1a7b413d8cd969f6d1fcb1a19e94b2a993
- Size
  
  161KB
- MD5
  
  29f38a6d8e56413b662bef5093124b5c
- SHA1
  
  3bad7d1c1c3364343b68fc3363d3e0655b143b5b
- SHA256
  
  424b81b6eab1f7df863c5b3930836a1a7b413d8cd969f6d1fcb1a19e94b2a993
- SHA512
  
  1686057565b469e8d174787f62740702f5ae3e97b72c9cbb6755a1383d0efb27253dd9e7866fdf6f43817b7b0fe58de19cced7573b4ce08e90b9b10b68906220
- SSDEEP
  
  3072:ojSuywe6x1ACSZEuNtV+TkqDXkyzbMeJRL3CNa/U9fStrveyk8TZgEd28GkFY:YnS62Fl+pkeJl3CvRStrFl+EYN
Score

10^/10

dridex 22202 botnet discovery loader
- Dridex
  Dridex(known as Bugat/Cridex) is a form of malware that specializes in stealing bank credentials.
  botnet dridex
- Dridex family
  dridex
- Dridex Loader
  Detects Dridex both x86 and x64 loader in memory.
  botnet loader
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

dridex22202botnetdiscoveryloader

behavioral2

dridex22202botnetdiscoveryloader

© 2018-2025

Terms | Privacy