dridex

General

Target

JaffaCakes118_ebe27378d3b7e2409722f57a121369203f528760124be03c95aade4b84799732
Size

159KB
Sample

241230-2c66ks1qfq
MD5

cf124355b466d4a2b0ef09b5aa1c0623
SHA1

acafa0c81b7076d753c03988d61865f4e04bb0a1
SHA256

ebe27378d3b7e2409722f57a121369203f528760124be03c95aade4b84799732
SHA512

5077fdf8b01e87442fe137e1adfa7733007e4a225e423cf1fbecad3ebf6b420a60752faab7de434b3f4af06d01739f679344463e8eb652c51fab8d9fc04b960a
SSDEEP

3072:Yd8CMtKJlXoDFwXrdV/9/uWIdojDZl4epTGmoAc7iTRilfn6wlYYmZwd:BnClX8WZ7/HrRCADTR0Vl0Zw

Score

10^/10

Malware Config

Extracted

Family

dridex

Botnet

22203

C2

78.46.73.125:443

185.148.168.26:2303

66.113.160.126:8172

rc4.plain

Targets

- Target
  
  JaffaCakes118_ebe27378d3b7e2409722f57a121369203f528760124be03c95aade4b84799732
- Size
  
  159KB
- MD5
  
  cf124355b466d4a2b0ef09b5aa1c0623
- SHA1
  
  acafa0c81b7076d753c03988d61865f4e04bb0a1
- SHA256
  
  ebe27378d3b7e2409722f57a121369203f528760124be03c95aade4b84799732
- SHA512
  
  5077fdf8b01e87442fe137e1adfa7733007e4a225e423cf1fbecad3ebf6b420a60752faab7de434b3f4af06d01739f679344463e8eb652c51fab8d9fc04b960a
- SSDEEP
  
  3072:Yd8CMtKJlXoDFwXrdV/9/uWIdojDZl4epTGmoAc7iTRilfn6wlYYmZwd:BnClX8WZ7/HrRCADTR0Vl0Zw
Score

10^/10

dridex 22203 botnet discovery evasion loader trojan
- Dridex
  Dridex(known as Bugat/Cridex) is a form of malware that specializes in stealing bank credentials.
  botnet dridex
- Dridex family
  dridex
- Dridex Loader
  Detects Dridex both x86 and x64 loader in memory.
  botnet loader
- Checks whether UAC is enabled
  evasion trojan
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

1

T1082

System Location Discovery

1

T1614

System Language Discovery

1

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Extracted

Targets

Dridex family

Dridex Loader

Checks whether UAC is enabled

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2