dridex | bad9439f5c238ba02d5fbd3efde6ab85126c2f77da5bdc12e7e244873d033734 | Triage

Submit
Reports

Overview

overview

Static

static

1

JaffaCakes...34.dll

windows7-x64

JaffaCakes...34.dll

windows10-2004-x64

Sharing

General

Target

JaffaCakes118_bad9439f5c238ba02d5fbd3efde6ab85126c2f77da5bdc12e7e244873d033734
Size

166KB
Sample

241230-vww2ds1kdl
MD5

73cbfba58b8de9d234746c8f5a14058f
SHA1

7e4ebe322fd2d85959491e0195fd1dce9c35ec27
SHA256

bad9439f5c238ba02d5fbd3efde6ab85126c2f77da5bdc12e7e244873d033734
SHA512

4b44d56d4f582761bf8b86e6dd0c07d7a199f6ca966206c00ad57589f3916365768651af2e22efd3e497902c89f8acab0c4bfd3c82b6c7108db89a4528eb6823
SSDEEP

3072:zBoQctVOM7/8wZQvUlM7EF+V2xReSbHNjztUJQ8eHdC:luXLcclWEc2HeSjNjGde9C

Score

10^/10

dridex 22203 botnet discovery loader

Static task

static1

Behavioral task

behavioral1

Sample

JaffaCakes118_bad9439f5c238ba02d5fbd3efde6ab85126c2f77da5bdc12e7e244873d033734.dll

Resource

win7-20240903-en

dridex 22203 botnet discovery loader

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

JaffaCakes118_bad9439f5c238ba02d5fbd3efde6ab85126c2f77da5bdc12e7e244873d033734.dll

Resource

win10v2004-20241007-en

dridex 22203 botnet discovery loader

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Extracted

Family

dridex

Botnet

22203

C2

131.100.24.202:443

193.160.214.95:4125

67.43.4.76:8172

rc4.plain

rc4.plain

Targets

- Target
  
  JaffaCakes118_bad9439f5c238ba02d5fbd3efde6ab85126c2f77da5bdc12e7e244873d033734
- Size
  
  166KB
- MD5
  
  73cbfba58b8de9d234746c8f5a14058f
- SHA1
  
  7e4ebe322fd2d85959491e0195fd1dce9c35ec27
- SHA256
  
  bad9439f5c238ba02d5fbd3efde6ab85126c2f77da5bdc12e7e244873d033734
- SHA512
  
  4b44d56d4f582761bf8b86e6dd0c07d7a199f6ca966206c00ad57589f3916365768651af2e22efd3e497902c89f8acab0c4bfd3c82b6c7108db89a4528eb6823
- SSDEEP
  
  3072:zBoQctVOM7/8wZQvUlM7EF+V2xReSbHNjztUJQ8eHdC:luXLcclWEc2HeSjNjGde9C
Score

10^/10

dridex 22203 botnet discovery loader
- Dridex
  Dridex(known as Bugat/Cridex) is a form of malware that specializes in stealing bank credentials.
  botnet dridex
- Dridex family
  dridex
- Dridex Loader
  Detects Dridex both x86 and x64 loader in memory.
  botnet loader
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

dridex22203botnetdiscoveryloader

behavioral2

dridex22203botnetdiscoveryloader

© 2018-2025

Terms | Privacy