General
-
Target
JaffaCakes118_3e05b3a7275eeb4233f6ca55555ef50b84fcfb96f2ea5734b17549d38e95122d
-
Size
162KB
-
Sample
241230-e39m3ayjfm
-
MD5
ecb7c12078e6c6c9bd334748516b5e15
-
SHA1
b8683fc8c71c0c3bce33b45e96bde603ae2490e6
-
SHA256
3e05b3a7275eeb4233f6ca55555ef50b84fcfb96f2ea5734b17549d38e95122d
-
SHA512
02644347744a1520965ad36e06c2fada9b2f02b040980bd61d3a01a93f9d2cea36899f4bcf2c64fda81e7b6f4a2c98d977c7e3fca762241a7b4f562557091f9b
-
SSDEEP
3072:VmNFcsGvTmf9vOmoM0IZ5kPjBxYvdIL2KyOQaOP8+cMTH1PxsMYQnF1b1l:0Lc7UtOpM1Z5k1xYO2LXjTH1pH5nF1p
Malware Config
Extracted
dridex
40112
107.172.227.10:443
172.93.133.123:2303
108.168.61.147:8172
Targets
-
-
Target
JaffaCakes118_3e05b3a7275eeb4233f6ca55555ef50b84fcfb96f2ea5734b17549d38e95122d
-
Size
162KB
-
MD5
ecb7c12078e6c6c9bd334748516b5e15
-
SHA1
b8683fc8c71c0c3bce33b45e96bde603ae2490e6
-
SHA256
3e05b3a7275eeb4233f6ca55555ef50b84fcfb96f2ea5734b17549d38e95122d
-
SHA512
02644347744a1520965ad36e06c2fada9b2f02b040980bd61d3a01a93f9d2cea36899f4bcf2c64fda81e7b6f4a2c98d977c7e3fca762241a7b4f562557091f9b
-
SSDEEP
3072:VmNFcsGvTmf9vOmoM0IZ5kPjBxYvdIL2KyOQaOP8+cMTH1PxsMYQnF1b1l:0Lc7UtOpM1Z5k1xYO2LXjTH1pH5nF1p
Score10/10-
Dridex
Dridex(known as Bugat/Cridex) is a form of malware that specializes in stealing bank credentials.
-
Dridex family
-
Dridex Loader
Detects Dridex both x86 and x64 loader in memory.
-
Checks whether UAC is enabled
-