General
-
Target
JaffaCakes118_88a7542d337a10e1e0f120bc8b3f4339c53fa49b0bf41f874b022e5ae6ccc1cb
-
Size
177KB
-
Sample
241230-gp1t4szqdz
-
MD5
c649526a59a1844e9ca3cd5ddcfb3f18
-
SHA1
a6a6c1999cc499e0e57844f44f623a7e351a565e
-
SHA256
88a7542d337a10e1e0f120bc8b3f4339c53fa49b0bf41f874b022e5ae6ccc1cb
-
SHA512
af5826f08dba07b4224509b0d1ca1f8d2175864f3554b75d2ec814606c620a8735f6bce7bb6b1827744e6e96a4f5dd23c9461d302564054a19345a827bfa30f0
-
SSDEEP
3072:QuCmyBVtWxZCOCA4Hpl1tv18FTETA8ocya/OyoSJPAacbnid8DOHPJ+HJ:8zWxkOP4p2EesvcDi6DOHPJ
Malware Config
Extracted
dridex
22201
144.76.1.150:443
50.249.212.98:23399
104.168.154.79:5007
Targets
-
-
Target
JaffaCakes118_88a7542d337a10e1e0f120bc8b3f4339c53fa49b0bf41f874b022e5ae6ccc1cb
-
Size
177KB
-
MD5
c649526a59a1844e9ca3cd5ddcfb3f18
-
SHA1
a6a6c1999cc499e0e57844f44f623a7e351a565e
-
SHA256
88a7542d337a10e1e0f120bc8b3f4339c53fa49b0bf41f874b022e5ae6ccc1cb
-
SHA512
af5826f08dba07b4224509b0d1ca1f8d2175864f3554b75d2ec814606c620a8735f6bce7bb6b1827744e6e96a4f5dd23c9461d302564054a19345a827bfa30f0
-
SSDEEP
3072:QuCmyBVtWxZCOCA4Hpl1tv18FTETA8ocya/OyoSJPAacbnid8DOHPJ+HJ:8zWxkOP4p2EesvcDi6DOHPJ
Score10/10-
Dridex
Dridex(known as Bugat/Cridex) is a form of malware that specializes in stealing bank credentials.
-
Dridex family
-
Dridex Loader
Detects Dridex both x86 and x64 loader in memory.
-