General
-
Target
JaffaCakes118_73e9b04cf84a9c5194bf832d119d17d057ed61d0d72f055aceb9727170851024
-
Size
184KB
-
Sample
241227-bd1r3sxlcs
-
MD5
6ef7ee8159e16a00bb2fd26d76d419d8
-
SHA1
619a68c9686f49c7d36eb522fe98435e687527bb
-
SHA256
73e9b04cf84a9c5194bf832d119d17d057ed61d0d72f055aceb9727170851024
-
SHA512
bc40be2429a60376d82e14412b665974e48d7df3e185aa9fa5b311c05fb5d50b0032d765abfc3ee8101908aac836ca1103db79f061affee0fbb4eec7a1df27f0
-
SSDEEP
3072:eiLVj+luuUXoPOK2z1WPRgg5YbW+d0Ojk1bSA5q/eaoElzoxss7:eiLVCIT4WK2z1W+CUHZj4Skq/eao6oC
Malware Config
Extracted
dridex
22202
80.241.218.90:443
103.161.172.109:13786
87.98.128.76:5723
Targets
-
-
Target
JaffaCakes118_73e9b04cf84a9c5194bf832d119d17d057ed61d0d72f055aceb9727170851024
-
Size
184KB
-
MD5
6ef7ee8159e16a00bb2fd26d76d419d8
-
SHA1
619a68c9686f49c7d36eb522fe98435e687527bb
-
SHA256
73e9b04cf84a9c5194bf832d119d17d057ed61d0d72f055aceb9727170851024
-
SHA512
bc40be2429a60376d82e14412b665974e48d7df3e185aa9fa5b311c05fb5d50b0032d765abfc3ee8101908aac836ca1103db79f061affee0fbb4eec7a1df27f0
-
SSDEEP
3072:eiLVj+luuUXoPOK2z1WPRgg5YbW+d0Ojk1bSA5q/eaoElzoxss7:eiLVCIT4WK2z1W+CUHZj4Skq/eao6oC
Score10/10-
Dridex
Dridex(known as Bugat/Cridex) is a form of malware that specializes in stealing bank credentials.
-
Dridex family
-
Dridex Loader
Detects Dridex both x86 and x64 loader in memory.
-