dridex | 61014a4368a2ae91be399ed7dff92be5aa369e86e94d10dc0fe4b18085c667ac | Triage

Submit
Reports

Overview

overview

Static

static

3

JaffaCakes...ac.dll

windows7-x64

JaffaCakes...ac.dll

windows10-2004-x64

Sharing

General

Target

JaffaCakes118_61014a4368a2ae91be399ed7dff92be5aa369e86e94d10dc0fe4b18085c667ac
Size

184KB
Sample

241223-214elatra1
MD5

1df83799ae876aca550b9333ef692666
SHA1

0b7093979308e44316d6e13feb5c34111ff1f272
SHA256

61014a4368a2ae91be399ed7dff92be5aa369e86e94d10dc0fe4b18085c667ac
SHA512

889971cbc1d77f62356d9bdcc3420e3c111a49db3d2683e943ddd1fe7838c596e83f16e1f6ccf11aa479669f9e757fae08fbc487a13a54b4c9c21c823a384174
SSDEEP

3072:hJQ6H3ykY88YOSs+k1TwEuTcMIznNuOzlr1Xznku9Luk0eJww8Jma//2uFrSc:ifYOX+wTScR/Xzku9LVw5uG

Score

10^/10

dridex 22201 botnet discovery loader

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

JaffaCakes118_61014a4368a2ae91be399ed7dff92be5aa369e86e94d10dc0fe4b18085c667ac.dll

Resource

win7-20240903-en

dridex 22201 botnet discovery loader

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

JaffaCakes118_61014a4368a2ae91be399ed7dff92be5aa369e86e94d10dc0fe4b18085c667ac.dll

Resource

win10v2004-20241007-en

dridex 22201 botnet discovery loader

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Extracted

Family

dridex

Botnet

22201

C2

80.241.218.90:443

103.161.172.109:13786

87.98.128.76:5723

rc4.plain

rc4.plain

Targets

- Target
  
  JaffaCakes118_61014a4368a2ae91be399ed7dff92be5aa369e86e94d10dc0fe4b18085c667ac
- Size
  
  184KB
- MD5
  
  1df83799ae876aca550b9333ef692666
- SHA1
  
  0b7093979308e44316d6e13feb5c34111ff1f272
- SHA256
  
  61014a4368a2ae91be399ed7dff92be5aa369e86e94d10dc0fe4b18085c667ac
- SHA512
  
  889971cbc1d77f62356d9bdcc3420e3c111a49db3d2683e943ddd1fe7838c596e83f16e1f6ccf11aa479669f9e757fae08fbc487a13a54b4c9c21c823a384174
- SSDEEP
  
  3072:hJQ6H3ykY88YOSs+k1TwEuTcMIznNuOzlr1Xznku9Luk0eJww8Jma//2uFrSc:ifYOX+wTScR/Xzku9LVw5uG
Score

10^/10

dridex 22201 botnet discovery loader
- Dridex
  Dridex(known as Bugat/Cridex) is a form of malware that specializes in stealing bank credentials.
  botnet dridex
- Dridex family
  dridex
- Dridex Loader
  Detects Dridex both x86 and x64 loader in memory.
  botnet loader
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

dridex22201botnetdiscoveryloader

behavioral2

dridex22201botnetdiscoveryloader

© 2018-2025

Terms | Privacy