dridex | 8711d4d8bed1095832919cb561990b100945c424791b5955c8aeafc6a40b038b | Triage

Sharing

General

Target

JaffaCakes118_8711d4d8bed1095832919cb561990b100945c424791b5955c8aeafc6a40b038b
Size

162KB
Sample

241230-1bjhfszjgq
MD5

44a387801b118f2a7b08248ad81da265
SHA1

05247ff65831e7748259366c03b70f9da5abb3a6
SHA256

8711d4d8bed1095832919cb561990b100945c424791b5955c8aeafc6a40b038b
SHA512

47437689d0e3f918ff17d60679d9930d5af2a50f77dfaa37b9b7c56fbaaf12fa7b2320a7767bf3ae776162ae45a5b0b20449a1becc32f7949fe2da7534b6d6f9
SSDEEP

3072:l/FbrEzD9N+RiMB00c9/74DXE+JgaV7IPx+e6O/pPtaLOi:XbrE1kvcB74DXZ2Mel3i

Score

10^/10

dridex 22201 botnet discovery loader

Malware Config

Extracted

Family

dridex

Botnet

22201

C2

203.114.109.124:443

82.165.145.100:6601

94.177.255.18:8172

rc4.plain

rc4.plain

Targets

- Target
  
  JaffaCakes118_8711d4d8bed1095832919cb561990b100945c424791b5955c8aeafc6a40b038b
- Size
  
  162KB
- MD5
  
  44a387801b118f2a7b08248ad81da265
- SHA1
  
  05247ff65831e7748259366c03b70f9da5abb3a6
- SHA256
  
  8711d4d8bed1095832919cb561990b100945c424791b5955c8aeafc6a40b038b
- SHA512
  
  47437689d0e3f918ff17d60679d9930d5af2a50f77dfaa37b9b7c56fbaaf12fa7b2320a7767bf3ae776162ae45a5b0b20449a1becc32f7949fe2da7534b6d6f9
- SSDEEP
  
  3072:l/FbrEzD9N+RiMB00c9/74DXE+JgaV7IPx+e6O/pPtaLOi:XbrE1kvcB74DXZ2Mel3i
Score

10^/10

dridex 22201 botnet discovery loader
- Dridex
  Dridex(known as Bugat/Cridex) is a form of malware that specializes in stealing bank credentials.
  botnet dridex
- Dridex family
  dridex
- Dridex Loader
  Detects Dridex both x86 and x64 loader in memory.
  botnet loader
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

dridex22201botnetdiscoveryloader

behavioral2

dridex22201botnetdiscoveryloader