General
-
Target
JaffaCakes118_7443135d929b21a8b9ef9b5ebf48cbfe028ebaecaa87548915ae2f3f3bed2260
-
Size
184KB
-
Sample
241226-2fnhmstlcq
-
MD5
1a15a9487f8e8a9a9608588424cb6019
-
SHA1
6f2d1879ce59f309bc8fe360b229d9c76b28472c
-
SHA256
7443135d929b21a8b9ef9b5ebf48cbfe028ebaecaa87548915ae2f3f3bed2260
-
SHA512
85f371a30e6367832c33590d081a86004f2dc12cd4fc3de0b7a0339a2427697027e68678d99f1a2272c1e1dc80177a05ec356d0dad6f11cfc8f92cdc47706b42
-
SSDEEP
3072:9uwfhNXphcqs2tJYsoa9Xibolk0CtPBU1jhhF8ZJ8fDo4KElmsb:P7TXYsd9SkONU1jKGlblm
Malware Config
Extracted
dridex
22202
103.75.201.2:443
158.223.1.108:6225
165.22.28.242:4664
Targets
-
-
Target
JaffaCakes118_7443135d929b21a8b9ef9b5ebf48cbfe028ebaecaa87548915ae2f3f3bed2260
-
Size
184KB
-
MD5
1a15a9487f8e8a9a9608588424cb6019
-
SHA1
6f2d1879ce59f309bc8fe360b229d9c76b28472c
-
SHA256
7443135d929b21a8b9ef9b5ebf48cbfe028ebaecaa87548915ae2f3f3bed2260
-
SHA512
85f371a30e6367832c33590d081a86004f2dc12cd4fc3de0b7a0339a2427697027e68678d99f1a2272c1e1dc80177a05ec356d0dad6f11cfc8f92cdc47706b42
-
SSDEEP
3072:9uwfhNXphcqs2tJYsoa9Xibolk0CtPBU1jhhF8ZJ8fDo4KElmsb:P7TXYsd9SkONU1jKGlblm
Score10/10-
Dridex
Dridex(known as Bugat/Cridex) is a form of malware that specializes in stealing bank credentials.
-
Dridex family
-
Dridex Loader
Detects Dridex both x86 and x64 loader in memory.
-