General
-
Target
JaffaCakes118_6c3827c19e3d0de438eeaf1e3fa12028fb14ee7feba8aeb390b5528586d4a369
-
Size
188KB
-
Sample
241230-gpt2kazqdv
-
MD5
b70f226a6d399cf6a60012e74e5a42cd
-
SHA1
024b2623d8e3b148fa06a15f62f6f7854a447020
-
SHA256
6c3827c19e3d0de438eeaf1e3fa12028fb14ee7feba8aeb390b5528586d4a369
-
SHA512
6f542c837c25a8564cba7535664dd41d41a49e0edfdd6054e51294899b387bf221340bedaf01c89b0c572de04adf93a79a6998a99eb9e554fdc58df0de5797cb
-
SSDEEP
3072:lteMq7hp/YIzA6BZvlWnTDN2GL9L8NLXWruiuUCzTOwwc0cIz/9qM:hq7fYIHBZkTB6DWruUCOwjt
Malware Config
Extracted
dridex
22201
103.87.173.60:443
45.32.243.209:8116
207.180.208.54:4664
Targets
-
-
Target
JaffaCakes118_6c3827c19e3d0de438eeaf1e3fa12028fb14ee7feba8aeb390b5528586d4a369
-
Size
188KB
-
MD5
b70f226a6d399cf6a60012e74e5a42cd
-
SHA1
024b2623d8e3b148fa06a15f62f6f7854a447020
-
SHA256
6c3827c19e3d0de438eeaf1e3fa12028fb14ee7feba8aeb390b5528586d4a369
-
SHA512
6f542c837c25a8564cba7535664dd41d41a49e0edfdd6054e51294899b387bf221340bedaf01c89b0c572de04adf93a79a6998a99eb9e554fdc58df0de5797cb
-
SSDEEP
3072:lteMq7hp/YIzA6BZvlWnTDN2GL9L8NLXWruiuUCzTOwwc0cIz/9qM:hq7fYIHBZkTB6DWruUCOwjt
Score10/10-
Dridex
Dridex(known as Bugat/Cridex) is a form of malware that specializes in stealing bank credentials.
-
Dridex family
-
Dridex Loader
Detects Dridex both x86 and x64 loader in memory.
-