General
-
Target
JaffaCakes118_3447107ccd1df8c406964769d1ec9185660896d4d1142c0378985be52b50599f
-
Size
188KB
-
Sample
241223-wh8zgawqay
-
MD5
eba785fd9c43a25ddf4dfb6f2d843500
-
SHA1
8aa7cd9bbbfd1404d92a4ebd27dfaf53bb398bc5
-
SHA256
3447107ccd1df8c406964769d1ec9185660896d4d1142c0378985be52b50599f
-
SHA512
5c99be075759b2816c45456f4628c1fb0d569ecac055ea5a02f94296692a7a5aeb8c1c854e49cc053c3459f4fe7861d0dc25d8d9da0693b0806dd1d0d9063bd5
-
SSDEEP
3072:8teMq7hp/YIzA6BZvlWnTDN2GL9L8NLXWruiuUCzTOwwc0cIzX9qM:Aq7fYIHBZkTB6DWruUCOwjt
Malware Config
Extracted
dridex
22201
103.87.173.60:443
45.32.243.209:8116
207.180.208.54:4664
Targets
-
-
Target
JaffaCakes118_3447107ccd1df8c406964769d1ec9185660896d4d1142c0378985be52b50599f
-
Size
188KB
-
MD5
eba785fd9c43a25ddf4dfb6f2d843500
-
SHA1
8aa7cd9bbbfd1404d92a4ebd27dfaf53bb398bc5
-
SHA256
3447107ccd1df8c406964769d1ec9185660896d4d1142c0378985be52b50599f
-
SHA512
5c99be075759b2816c45456f4628c1fb0d569ecac055ea5a02f94296692a7a5aeb8c1c854e49cc053c3459f4fe7861d0dc25d8d9da0693b0806dd1d0d9063bd5
-
SSDEEP
3072:8teMq7hp/YIzA6BZvlWnTDN2GL9L8NLXWruiuUCzTOwwc0cIzX9qM:Aq7fYIHBZkTB6DWruUCOwjt
Score10/10-
Dridex
Dridex(known as Bugat/Cridex) is a form of malware that specializes in stealing bank credentials.
-
Dridex family
-
Dridex Loader
Detects Dridex both x86 and x64 loader in memory.
-