General
-
Target
JaffaCakes118_f9749a56f45788c037a87ee8cee1d800d47f471ac72f7afe866b4b72a94fa415
-
Size
184KB
-
Sample
241229-pqwksa1qhm
-
MD5
1edc30fa8a7365441c85cd6ba0ac88b0
-
SHA1
0eac76181ed27a05dd577d7577eb8840cc486405
-
SHA256
f9749a56f45788c037a87ee8cee1d800d47f471ac72f7afe866b4b72a94fa415
-
SHA512
ebee3a5d5b327ce7237a2f980e19a5f50aa3114f6cf32e0596c5f78c067b163b026a844304c7e3255d12401b229502b314de89bc45ebc82144b82bb838fcd47b
-
SSDEEP
3072:qiLVj+luuUXoPOK2z1WPRgg5YbW+d0Ojk1bSA5q/eaoblzoxss7:qiLVCIT4WK2z1W+CUHZj4Skq/eaohoC
Malware Config
Extracted
dridex
22202
80.241.218.90:443
103.161.172.109:13786
87.98.128.76:5723
Targets
-
-
Target
JaffaCakes118_f9749a56f45788c037a87ee8cee1d800d47f471ac72f7afe866b4b72a94fa415
-
Size
184KB
-
MD5
1edc30fa8a7365441c85cd6ba0ac88b0
-
SHA1
0eac76181ed27a05dd577d7577eb8840cc486405
-
SHA256
f9749a56f45788c037a87ee8cee1d800d47f471ac72f7afe866b4b72a94fa415
-
SHA512
ebee3a5d5b327ce7237a2f980e19a5f50aa3114f6cf32e0596c5f78c067b163b026a844304c7e3255d12401b229502b314de89bc45ebc82144b82bb838fcd47b
-
SSDEEP
3072:qiLVj+luuUXoPOK2z1WPRgg5YbW+d0Ojk1bSA5q/eaoblzoxss7:qiLVCIT4WK2z1W+CUHZj4Skq/eaohoC
Score10/10-
Dridex
Dridex(known as Bugat/Cridex) is a form of malware that specializes in stealing bank credentials.
-
Dridex family
-
Dridex Loader
Detects Dridex both x86 and x64 loader in memory.
-