General
-
Target
JaffaCakes118_b16481cd1d551912cf0c6a1fb6f3fd693e83b4f0f4b9003488317c1a528ccc01
-
Size
188KB
-
Sample
241224-csentsyqax
-
MD5
b6326b9749ff0f87db77bbf63426c752
-
SHA1
76f102d1fbf33c20b6d39032a8576f8ca447a5ee
-
SHA256
b16481cd1d551912cf0c6a1fb6f3fd693e83b4f0f4b9003488317c1a528ccc01
-
SHA512
45473dca3c9d5921a59ca913a411b69079446be01dc4d4cb442a72253df5ac5f3396aa4a3ab171d56887d456cffdd889ae7fbc4fb987a755490d5d620139399a
-
SSDEEP
3072:YA8JmK7ATVfQeVqNFZa/9KzMXJ6jTFDlAwqWut5KZMzfeAAAo4o:YzIqATVfQeV2FZalKq6jtGJWuTmd
Malware Config
Extracted
dridex
22201
103.82.248.59:443
54.39.98.141:6602
103.109.247.8:10443
Targets
-
-
Target
JaffaCakes118_b16481cd1d551912cf0c6a1fb6f3fd693e83b4f0f4b9003488317c1a528ccc01
-
Size
188KB
-
MD5
b6326b9749ff0f87db77bbf63426c752
-
SHA1
76f102d1fbf33c20b6d39032a8576f8ca447a5ee
-
SHA256
b16481cd1d551912cf0c6a1fb6f3fd693e83b4f0f4b9003488317c1a528ccc01
-
SHA512
45473dca3c9d5921a59ca913a411b69079446be01dc4d4cb442a72253df5ac5f3396aa4a3ab171d56887d456cffdd889ae7fbc4fb987a755490d5d620139399a
-
SSDEEP
3072:YA8JmK7ATVfQeVqNFZa/9KzMXJ6jTFDlAwqWut5KZMzfeAAAo4o:YzIqATVfQeV2FZalKq6jtGJWuTmd
Score10/10-
Dridex
Dridex(known as Bugat/Cridex) is a form of malware that specializes in stealing bank credentials.
-
Dridex family
-
Dridex Loader
Detects Dridex both x86 and x64 loader in memory.
-