Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

3

JaffaCakes...71.dll

windows7-x64

10

JaffaCakes...71.dll

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    JaffaCakes118_ffddd09c752b2b00af689ad9e33b4cbda256113a97f6e56d71a53b5603d81771

  • Size

    188KB

  • Sample

    241224-mv5m5swjdj

  • MD5

    3310c90360606b7db0f85cfa75e7608c

  • SHA1

    3900298ce69c331ec1daab046ecb820119d63559

  • SHA256

    ffddd09c752b2b00af689ad9e33b4cbda256113a97f6e56d71a53b5603d81771

  • SHA512

    c1758da5106177141e6ba14c14ff4a1cfea2da10b45ac72b7b5e746d04b99beb6514fec4debfd56c0b2415f932c31f7de0b6e502ab2346bc11d6f580068b05ee

  • SSDEEP

    3072:wA8JmK7ATVfQeVqNFZa/9KzMXJ6jTFDlAwqWut5KZMzfeAAAoyo:wzIqATVfQeV2FZalKq6jtGJWuTmd

Score
10/10
dridex22201botnetdiscoveryloader

Malware Config

Extracted

Family

dridex

Botnet

22201

C2

103.82.248.59:443

54.39.98.141:6602

103.109.247.8:10443
rc4.plain
rc4.plain

Targets

    • Target

      JaffaCakes118_ffddd09c752b2b00af689ad9e33b4cbda256113a97f6e56d71a53b5603d81771

    • Size

      188KB

    • MD5

      3310c90360606b7db0f85cfa75e7608c

    • SHA1

      3900298ce69c331ec1daab046ecb820119d63559

    • SHA256

      ffddd09c752b2b00af689ad9e33b4cbda256113a97f6e56d71a53b5603d81771

    • SHA512

      c1758da5106177141e6ba14c14ff4a1cfea2da10b45ac72b7b5e746d04b99beb6514fec4debfd56c0b2415f932c31f7de0b6e502ab2346bc11d6f580068b05ee

    • SSDEEP

      3072:wA8JmK7ATVfQeVqNFZa/9KzMXJ6jTFDlAwqWut5KZMzfeAAAoyo:wzIqATVfQeV2FZalKq6jtGJWuTmd

    Score
    10/10
    dridex22201botnetdiscoveryloader

    • Dridex

      Dridex(known as Bugat/Cridex) is a form of malware that specializes in stealing bank credentials.

      botnetdridex

    • Dridex family

      dridex

    • Dridex Loader

      Detects Dridex both x86 and x64 loader in memory.

      botnetloader
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks