Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

3

JaffaCakes...2b.dll

windows7-x64

10

JaffaCakes...2b.dll

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    JaffaCakes118_e17ad92a89e298bf5c66bf1597fff39507d8b86a967725c48dc76843a4b5772b

  • Size

    184KB

  • Sample

    241225-wg5wes1ngq

  • MD5

    e43ac6a997df3984b17c111ec6c5c59c

  • SHA1

    176a12278a9ee7164639c4d373f1b56cf1d8a69c

  • SHA256

    e17ad92a89e298bf5c66bf1597fff39507d8b86a967725c48dc76843a4b5772b

  • SHA512

    f4db3dedca0a4a700471448d1b60cb4c4395fc23da9d8eed6d1fec04051d7189fd23a9d2edc4583b349334a027531a764b2b30abbc42c933136eda087e8573f4

  • SSDEEP

    3072:TiLVj+luuUXoPOK2z1WPRgg5YbW+d0Ojk1bSA5q/eaotlzoxss7:TiLVCIT4WK2z1W+CUHZj4Skq/eaojoC

Score
10/10
dridex22202botnetdiscoveryloader

Malware Config

Extracted

Family

dridex

Botnet

22202

C2

80.241.218.90:443

103.161.172.109:13786

87.98.128.76:5723
rc4.plain
rc4.plain

Targets

    • Target

      JaffaCakes118_e17ad92a89e298bf5c66bf1597fff39507d8b86a967725c48dc76843a4b5772b

    • Size

      184KB

    • MD5

      e43ac6a997df3984b17c111ec6c5c59c

    • SHA1

      176a12278a9ee7164639c4d373f1b56cf1d8a69c

    • SHA256

      e17ad92a89e298bf5c66bf1597fff39507d8b86a967725c48dc76843a4b5772b

    • SHA512

      f4db3dedca0a4a700471448d1b60cb4c4395fc23da9d8eed6d1fec04051d7189fd23a9d2edc4583b349334a027531a764b2b30abbc42c933136eda087e8573f4

    • SSDEEP

      3072:TiLVj+luuUXoPOK2z1WPRgg5YbW+d0Ojk1bSA5q/eaotlzoxss7:TiLVCIT4WK2z1W+CUHZj4Skq/eaojoC

    Score
    10/10
    dridex22202botnetdiscoveryloader

    • Dridex

      Dridex(known as Bugat/Cridex) is a form of malware that specializes in stealing bank credentials.

      botnetdridex

    • Dridex family

      dridex

    • Dridex Loader

      Detects Dridex both x86 and x64 loader in memory.

      botnetloader
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks