Overview

overview

10

Static

static

3

JaffaCakes...3c.dll

windows7-x64

10

JaffaCakes...3c.dll

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    JaffaCakes118_e00ee2cdec04d39c13244db0c03b167b59d375e2dafe96ef76633f8b55bdd03c

  • Size

    188KB

  • Sample

    241224-dzjrss1mcn

  • MD5

    f09d105efd8e97165a97aabc51178eb8

  • SHA1

    4cba3f34fcdc4e06d3d26023087cfaf4244536c8

  • SHA256

    e00ee2cdec04d39c13244db0c03b167b59d375e2dafe96ef76633f8b55bdd03c

  • SHA512

    f84cac19e526af2e4dc67a017b26a6289de9910f0d5cd83054fbcfe03c7a2a06218806d2bcb151d031b7ff7b9afed3a6309bf2b2ae4c6aba6340bcbc71bf295a

  • SSDEEP

    3072:5teMq7hp/YIzA6BZvlWnTDN2GL9L8NLXWruiuUCzTOwwc0cIzf9qM:Vq7fYIHBZkTB6DWruUCOwjt

Score
10/10
dridex22201botnetdiscoveryloader

Malware Config

Extracted

Family

dridex

Botnet

22201

C2

103.87.173.60:443

45.32.243.209:8116

207.180.208.54:4664
rc4.plain
1
O8gS34J9YSWjLHlls2UUrobOVwkv2gxcuQGDftg29
rc4.plain
1
uKMtcv1AqGZruPo9ospRTBws8THw75AMb8FgkX5O4e9TcekeUYyEZPcdBYFbpQD81

Targets

    • Target

      JaffaCakes118_e00ee2cdec04d39c13244db0c03b167b59d375e2dafe96ef76633f8b55bdd03c

    • Size

      188KB

    • MD5

      f09d105efd8e97165a97aabc51178eb8

    • SHA1

      4cba3f34fcdc4e06d3d26023087cfaf4244536c8

    • SHA256

      e00ee2cdec04d39c13244db0c03b167b59d375e2dafe96ef76633f8b55bdd03c

    • SHA512

      f84cac19e526af2e4dc67a017b26a6289de9910f0d5cd83054fbcfe03c7a2a06218806d2bcb151d031b7ff7b9afed3a6309bf2b2ae4c6aba6340bcbc71bf295a

    • SSDEEP

      3072:5teMq7hp/YIzA6BZvlWnTDN2GL9L8NLXWruiuUCzTOwwc0cIzf9qM:Vq7fYIHBZkTB6DWruUCOwjt

    Score
    10/10
    dridex22201botnetdiscoveryloader

    • Dridex

      Dridex(known as Bugat/Cridex) is a form of malware that specializes in stealing bank credentials.

      botnetdridex

    • Dridex family

      dridex

    • Dridex Loader

      Detects Dridex both x86 and x64 loader in memory.

      botnetloader
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.