dridex

General

Target

JaffaCakes118_d1f7f5ea69746248a9143164a14776a0e77ffcc7e60f5bebfeea5e38d33c48f3
Size

204KB
Sample

241230-xvr26atrep
MD5

0bf0e9c6d003066cd35babd90b43765d
SHA1

ddf1343af4634f15ddb496f278c80ad8de2caa55
SHA256

d1f7f5ea69746248a9143164a14776a0e77ffcc7e60f5bebfeea5e38d33c48f3
SHA512

21f76b45b3cc22b5e6ca0c06bf846aa1ab744686a561edb80b0d4c0b1b9fc34e0c2193ac5188ba84e437ce2bdb82e9313d5b55c9747569365e9e5372890ce618
SSDEEP

3072:zopj6gTxmzaCEH8nFb369t9EtpiU7FZEz57GEYd4ntfrOulzQh:0pjtUzy8nF8YN73Ez57Gz4VyWzQ

Score

10^/10

Malware Config

Extracted

Family

dridex

Botnet

40111

C2

159.8.59.84:443

198.20.253.36:6601

162.144.76.184:2303

rc4.plain

Targets

- Target
  
  JaffaCakes118_d1f7f5ea69746248a9143164a14776a0e77ffcc7e60f5bebfeea5e38d33c48f3
- Size
  
  204KB
- MD5
  
  0bf0e9c6d003066cd35babd90b43765d
- SHA1
  
  ddf1343af4634f15ddb496f278c80ad8de2caa55
- SHA256
  
  d1f7f5ea69746248a9143164a14776a0e77ffcc7e60f5bebfeea5e38d33c48f3
- SHA512
  
  21f76b45b3cc22b5e6ca0c06bf846aa1ab744686a561edb80b0d4c0b1b9fc34e0c2193ac5188ba84e437ce2bdb82e9313d5b55c9747569365e9e5372890ce618
- SSDEEP
  
  3072:zopj6gTxmzaCEH8nFb369t9EtpiU7FZEz57GEYd4ntfrOulzQh:0pjtUzy8nF8YN73Ez57Gz4VyWzQ
Score

10^/10

dridex 40111 botnet discovery evasion loader trojan
- Dridex
  Dridex(known as Bugat/Cridex) is a form of malware that specializes in stealing bank credentials.
  botnet dridex
- Dridex family
  dridex
- Dridex Loader
  Detects Dridex both x86 and x64 loader in memory.
  botnet loader
- Checks whether UAC is enabled
  evasion trojan
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

1

T1082

System Location Discovery

1

T1614

System Language Discovery

1

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Extracted

Targets

Dridex family

Dridex Loader

Checks whether UAC is enabled

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2