General
-
Target
JaffaCakes118_ebb61f01d432e5dca5e68273e18d5893771866f6b085d8ea1b7e76a3a212ec88
-
Size
184KB
-
Sample
241229-3whg1a1kgt
-
MD5
515a48bfe2bb7fa0e20490fa7e1fc9da
-
SHA1
b01d0dd9fce3682c58fcabc6d15a92181b4b1f12
-
SHA256
ebb61f01d432e5dca5e68273e18d5893771866f6b085d8ea1b7e76a3a212ec88
-
SHA512
5440999e224b16fa95aa6b52df34b816a0f2d559cf4c65228595967a858ea7019b324805ec3400afbc80c96a04a2c4594b032407e09748d38711ddd547d26fc7
-
SSDEEP
3072:viLVj+luuUXoPOK2z1WPRgg5YbW+d0Ojk1bSA5q/eaoHlzoxss7:viLVCIT4WK2z1W+CUHZj4Skq/eao1oC
Malware Config
Extracted
dridex
22202
80.241.218.90:443
103.161.172.109:13786
87.98.128.76:5723
Targets
-
-
Target
JaffaCakes118_ebb61f01d432e5dca5e68273e18d5893771866f6b085d8ea1b7e76a3a212ec88
-
Size
184KB
-
MD5
515a48bfe2bb7fa0e20490fa7e1fc9da
-
SHA1
b01d0dd9fce3682c58fcabc6d15a92181b4b1f12
-
SHA256
ebb61f01d432e5dca5e68273e18d5893771866f6b085d8ea1b7e76a3a212ec88
-
SHA512
5440999e224b16fa95aa6b52df34b816a0f2d559cf4c65228595967a858ea7019b324805ec3400afbc80c96a04a2c4594b032407e09748d38711ddd547d26fc7
-
SSDEEP
3072:viLVj+luuUXoPOK2z1WPRgg5YbW+d0Ojk1bSA5q/eaoHlzoxss7:viLVCIT4WK2z1W+CUHZj4Skq/eao1oC
Score10/10-
Dridex
Dridex(known as Bugat/Cridex) is a form of malware that specializes in stealing bank credentials.
-
Dridex family
-
Dridex Loader
Detects Dridex both x86 and x64 loader in memory.
-