dridex | 25aabd5e0c22d5302fb38ff24c82dfe10ce72347b9a3cf9e2961ef479d9a1b48 | Triage

Submit
Reports

Overview

overview

Static

static

3

JaffaCakes...48.dll

windows7-x64

JaffaCakes...48.dll

windows10-2004-x64

Sharing

General

Target

JaffaCakes118_25aabd5e0c22d5302fb38ff24c82dfe10ce72347b9a3cf9e2961ef479d9a1b48
Size

184KB
Sample

241230-ezz98axrcy
MD5

058baf58090f9a7c107076b0332341f4
SHA1

819b52a7c4474b723f4c1a7100a7584bb78e2860
SHA256

25aabd5e0c22d5302fb38ff24c82dfe10ce72347b9a3cf9e2961ef479d9a1b48
SHA512

be6b5927b5c28b7c99bd455cfc33af5a9805101772a1e212284086fd5754d8cc4a00150d175d6526f1ad205162e6428f6c32f669280fef261f3738a312ade983
SSDEEP

3072:uJQ6H3ykY88YOSs+k1TwEuTcMIznNuOzlr1Xznku9Luk0eJww8JKa//2uFrSc:XfYOX+wTScR/Xzku9LVwZuG

Score

10^/10

dridex 22201 botnet discovery loader

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

JaffaCakes118_25aabd5e0c22d5302fb38ff24c82dfe10ce72347b9a3cf9e2961ef479d9a1b48.dll

Resource

win7-20240708-en

dridex 22201 botnet discovery loader

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

JaffaCakes118_25aabd5e0c22d5302fb38ff24c82dfe10ce72347b9a3cf9e2961ef479d9a1b48.dll

Resource

win10v2004-20241007-en

dridex 22201 botnet discovery loader

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Extracted

Family

dridex

Botnet

22201

C2

80.241.218.90:443

103.161.172.109:13786

87.98.128.76:5723

rc4.plain

rc4.plain

Targets

- Target
  
  JaffaCakes118_25aabd5e0c22d5302fb38ff24c82dfe10ce72347b9a3cf9e2961ef479d9a1b48
- Size
  
  184KB
- MD5
  
  058baf58090f9a7c107076b0332341f4
- SHA1
  
  819b52a7c4474b723f4c1a7100a7584bb78e2860
- SHA256
  
  25aabd5e0c22d5302fb38ff24c82dfe10ce72347b9a3cf9e2961ef479d9a1b48
- SHA512
  
  be6b5927b5c28b7c99bd455cfc33af5a9805101772a1e212284086fd5754d8cc4a00150d175d6526f1ad205162e6428f6c32f669280fef261f3738a312ade983
- SSDEEP
  
  3072:uJQ6H3ykY88YOSs+k1TwEuTcMIznNuOzlr1Xznku9Luk0eJww8JKa//2uFrSc:XfYOX+wTScR/Xzku9LVwZuG
Score

10^/10

dridex 22201 botnet discovery loader
- Dridex
  Dridex(known as Bugat/Cridex) is a form of malware that specializes in stealing bank credentials.
  botnet dridex
- Dridex family
  dridex
- Dridex Loader
  Detects Dridex both x86 and x64 loader in memory.
  botnet loader
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

dridex22201botnetdiscoveryloader

behavioral2

dridex22201botnetdiscoveryloader

© 2018-2025

Terms | Privacy