Overview

overview

10

Static

static

3

0d5abf1b69...6N.exe

windows7-x64

10

0d5abf1b69...6N.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    0d5abf1b6951e1117750b26d12a2268726b243f44e2005bd220faee423a57a86N.exe

  • Size

    486KB

  • Sample

    250109-fpmf2szkax

  • MD5

    f25e9f2410198cef4ac70c579afe46f0

  • SHA1

    ffdfa79390205d5075ad212117584934862ec075

  • SHA256

    0d5abf1b6951e1117750b26d12a2268726b243f44e2005bd220faee423a57a86

  • SHA512

    e6f84d881a7f3af6a43ec726367f0b39beda776887ab69d071811f97d29ced09481d45bbcd5717a8b3fac2eaa40009b78b1eb1e0419a8cfc8cc3d6854d629986

  • SSDEEP

    12288:RAJfG7BG7Ihl4RoyJqTf3gZhA+BAmAuCwPK91X8U8tnx:Rn07IY6yJqb3gf5tCP1MU8b

Score
10/10
dridex10111botnetdiscovery

Malware Config

Extracted

Family

dridex

Botnet

10111

C2

5.9.178.143:443

2.58.16.89:8443

37.139.2.140:3889
rc4.plain
rc4.plain

Targets

    • Target

      0d5abf1b6951e1117750b26d12a2268726b243f44e2005bd220faee423a57a86N.exe

    • Size

      486KB

    • MD5

      f25e9f2410198cef4ac70c579afe46f0

    • SHA1

      ffdfa79390205d5075ad212117584934862ec075

    • SHA256

      0d5abf1b6951e1117750b26d12a2268726b243f44e2005bd220faee423a57a86

    • SHA512

      e6f84d881a7f3af6a43ec726367f0b39beda776887ab69d071811f97d29ced09481d45bbcd5717a8b3fac2eaa40009b78b1eb1e0419a8cfc8cc3d6854d629986

    • SSDEEP

      12288:RAJfG7BG7Ihl4RoyJqTf3gZhA+BAmAuCwPK91X8U8tnx:Rn07IY6yJqb3gf5tCP1MU8b

    Score
    10/10
    dridex10111botnetdiscovery

    • Dridex

      Dridex(known as Bugat/Cridex) is a form of malware that specializes in stealing bank credentials.

      botnetdridex

    • Dridex family

      dridex
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks