dridex | 3af9eedacb3ccaf316faa7d33e3b9f9f2619684b3449cee8beccd43140a502bc | Triage

Submit
Reports

Overview

overview

Static

static

3

JaffaCakes...bc.dll

windows7-x64

JaffaCakes...bc.dll

windows10-2004-x64

Sharing

General

Target

JaffaCakes118_3af9eedacb3ccaf316faa7d33e3b9f9f2619684b3449cee8beccd43140a502bc
Size

184KB
Sample

241224-dalj4azpgj
MD5

32f340de80cc2c19cdc99d5835d1bd71
SHA1

13c0349109b8df4411f794b63ad807de2bf4d266
SHA256

3af9eedacb3ccaf316faa7d33e3b9f9f2619684b3449cee8beccd43140a502bc
SHA512

ec6725a40dddd0b58ae2de06f254b4b507f1aeec200b7ee0603e428f063f41402fa873461cd5d2d2cd6cafd2952e7fd0313f60c1e608096909f09dfef547d23e
SSDEEP

3072:cJQ6H3ykY88YOSs+k1TwEuTcMIznNuOzlr1Xznku9Luk0eJww8Jla//2uFrSc:hfYOX+wTScR/Xzku9LVwiuG

Score

10^/10

dridex 22201 botnet discovery loader

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

JaffaCakes118_3af9eedacb3ccaf316faa7d33e3b9f9f2619684b3449cee8beccd43140a502bc.dll

Resource

win7-20240903-en

dridex 22201 botnet discovery loader

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

JaffaCakes118_3af9eedacb3ccaf316faa7d33e3b9f9f2619684b3449cee8beccd43140a502bc.dll

Resource

win10v2004-20241007-en

dridex 22201 botnet discovery loader

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Extracted

Family

dridex

Botnet

22201

C2

80.241.218.90:443

103.161.172.109:13786

87.98.128.76:5723

rc4.plain

rc4.plain

Targets

- Target
  
  JaffaCakes118_3af9eedacb3ccaf316faa7d33e3b9f9f2619684b3449cee8beccd43140a502bc
- Size
  
  184KB
- MD5
  
  32f340de80cc2c19cdc99d5835d1bd71
- SHA1
  
  13c0349109b8df4411f794b63ad807de2bf4d266
- SHA256
  
  3af9eedacb3ccaf316faa7d33e3b9f9f2619684b3449cee8beccd43140a502bc
- SHA512
  
  ec6725a40dddd0b58ae2de06f254b4b507f1aeec200b7ee0603e428f063f41402fa873461cd5d2d2cd6cafd2952e7fd0313f60c1e608096909f09dfef547d23e
- SSDEEP
  
  3072:cJQ6H3ykY88YOSs+k1TwEuTcMIznNuOzlr1Xznku9Luk0eJww8Jla//2uFrSc:hfYOX+wTScR/Xzku9LVwiuG
Score

10^/10

dridex 22201 botnet discovery loader
- Dridex
  Dridex(known as Bugat/Cridex) is a form of malware that specializes in stealing bank credentials.
  botnet dridex
- Dridex family
  dridex
- Dridex Loader
  Detects Dridex both x86 and x64 loader in memory.
  botnet loader
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

dridex22201botnetdiscoveryloader

behavioral2

dridex22201botnetdiscoveryloader

© 2018-2025

Terms | Privacy