dridex

General

Target

JaffaCakes118_de2bec98bfb84c3fcb4c029c521aa72682c7e282611937eec7e502bfb633bd21
Size

160KB
Sample

241230-e4d8jsyjcw
MD5

79978b3464d4dcf9b8d9c76623d65f57
SHA1

40de5a8b3611a9e16500fb529419f308372af7ef
SHA256

de2bec98bfb84c3fcb4c029c521aa72682c7e282611937eec7e502bfb633bd21
SHA512

109424778078749632f3c148ed0f54dc2fb97bf03a4903a112f9a2378a42e6eaa3e66be885c4090143b801cda8b5f8ecd101af3342f3e22148354da39f2fbd09
SSDEEP

3072:UWX2IjzzpM+PncPeY8+O3AU3HRIHPh3UGfXy0BHNkIv/ScbQQ2y0iNM0+y+N0tc:U42IfzNPnoeY8j3AsHGPXpHNj6rByM3

Score

10^/10

Malware Config

Extracted

Family

dridex

Botnet

40111

C2

94.247.168.64:443

159.203.93.122:8172

50.116.27.97:2303

rc4.plain

Targets

- Target
  
  JaffaCakes118_de2bec98bfb84c3fcb4c029c521aa72682c7e282611937eec7e502bfb633bd21
- Size
  
  160KB
- MD5
  
  79978b3464d4dcf9b8d9c76623d65f57
- SHA1
  
  40de5a8b3611a9e16500fb529419f308372af7ef
- SHA256
  
  de2bec98bfb84c3fcb4c029c521aa72682c7e282611937eec7e502bfb633bd21
- SHA512
  
  109424778078749632f3c148ed0f54dc2fb97bf03a4903a112f9a2378a42e6eaa3e66be885c4090143b801cda8b5f8ecd101af3342f3e22148354da39f2fbd09
- SSDEEP
  
  3072:UWX2IjzzpM+PncPeY8+O3AU3HRIHPh3UGfXy0BHNkIv/ScbQQ2y0iNM0+y+N0tc:U42IfzNPnoeY8j3AsHGPXpHNj6rByM3
Score

10^/10

dridex 40111 botnet discovery evasion loader trojan
- Dridex
  Dridex(known as Bugat/Cridex) is a form of malware that specializes in stealing bank credentials.
  botnet dridex
- Dridex family
  dridex
- Dridex Loader
  Detects Dridex both x86 and x64 loader in memory.
  botnet loader
- Checks whether UAC is enabled
  evasion trojan
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

1

T1082

System Location Discovery

1

T1614

System Language Discovery

1

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Extracted

Targets

Dridex family

Dridex Loader

Checks whether UAC is enabled

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2