dridex | 88bd817e43ff5bcde57d69f309dbd93ff6efb99150b0a038e09908952f1d2ebd | Triage

Submit
Reports

Overview

overview

Static

static

1

JaffaCakes...bd.dll

windows7-x64

JaffaCakes...bd.dll

windows10-2004-x64

Sharing

General

Target

JaffaCakes118_88bd817e43ff5bcde57d69f309dbd93ff6efb99150b0a038e09908952f1d2ebd
Size

166KB
Sample

241230-yfzdcsyjgv
MD5

3dc9b0a2d420f253da15558d0504af28
SHA1

09e73651bb76f76752fb464c0fa6a0a34beb7f78
SHA256

88bd817e43ff5bcde57d69f309dbd93ff6efb99150b0a038e09908952f1d2ebd
SHA512

c4250ef27394178a26a89d251f7d9a6f95a4a37910cbb7a7c3d53fa7ade84e299f1f71a1d43d06d0fc6cd175c42cf35def32ba94e43e59d0bfbbf1ce94ae515c
SSDEEP

3072:oBoQctVOM7/8wZQvUlM7EF+V2xReSbHNjztUJQ8eHC/:suXLcclWEc2HeSjNjGdei/

Score

10^/10

dridex 22203 botnet discovery loader

Static task

static1

Behavioral task

behavioral1

Sample

JaffaCakes118_88bd817e43ff5bcde57d69f309dbd93ff6efb99150b0a038e09908952f1d2ebd.dll

Resource

win7-20241023-en

dridex 22203 botnet discovery loader

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

JaffaCakes118_88bd817e43ff5bcde57d69f309dbd93ff6efb99150b0a038e09908952f1d2ebd.dll

Resource

win10v2004-20241007-en

dridex 22203 botnet discovery loader

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Extracted

Family

dridex

Botnet

22203

C2

131.100.24.202:443

193.160.214.95:4125

67.43.4.76:8172

rc4.plain

rc4.plain

Targets

- Target
  
  JaffaCakes118_88bd817e43ff5bcde57d69f309dbd93ff6efb99150b0a038e09908952f1d2ebd
- Size
  
  166KB
- MD5
  
  3dc9b0a2d420f253da15558d0504af28
- SHA1
  
  09e73651bb76f76752fb464c0fa6a0a34beb7f78
- SHA256
  
  88bd817e43ff5bcde57d69f309dbd93ff6efb99150b0a038e09908952f1d2ebd
- SHA512
  
  c4250ef27394178a26a89d251f7d9a6f95a4a37910cbb7a7c3d53fa7ade84e299f1f71a1d43d06d0fc6cd175c42cf35def32ba94e43e59d0bfbbf1ce94ae515c
- SSDEEP
  
  3072:oBoQctVOM7/8wZQvUlM7EF+V2xReSbHNjztUJQ8eHC/:suXLcclWEc2HeSjNjGdei/
Score

10^/10

dridex 22203 botnet discovery loader
- Dridex
  Dridex(known as Bugat/Cridex) is a form of malware that specializes in stealing bank credentials.
  botnet dridex
- Dridex family
  dridex
- Dridex Loader
  Detects Dridex both x86 and x64 loader in memory.
  botnet loader
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

dridex22203botnetdiscoveryloader

behavioral2

dridex22203botnetdiscoveryloader

© 2018-2025

Terms | Privacy