dridex | 7fa83f0588f0f50d0635313918137c05cb59aa672d842f864073aebb72c66195 | Triage

Sharing

General

Target

Trojan.Dridex.A.6164228ed2cc0eceba9ce1828d87d827
Size

152KB
Sample

250129-cbgrvszpbn
MD5

6164228ed2cc0eceba9ce1828d87d827
SHA1

cea5bc473c948a78ce565b6e195e6e25f029c0c6
SHA256

7fa83f0588f0f50d0635313918137c05cb59aa672d842f864073aebb72c66195
SHA512

b53ac27397ce5453fa008d1a2e98f9f66be7d7f08375b92c88007544c09ab844d6c8eeceb2221c988e0a0d6ffc2a8a290e49715e3062a74bcd2310d41bffcc37
SSDEEP

3072:VqD/ri6AM4odK4J663POAQgG8rYKvh+5Nl:V0xlIBwPOA+8Zhu

Score

10^/10

dridex botnet discovery

Malware Config

Targets

- Target
  
  Trojan.Dridex.A.6164228ed2cc0eceba9ce1828d87d827
- Size
  
  152KB
- MD5
  
  6164228ed2cc0eceba9ce1828d87d827
- SHA1
  
  cea5bc473c948a78ce565b6e195e6e25f029c0c6
- SHA256
  
  7fa83f0588f0f50d0635313918137c05cb59aa672d842f864073aebb72c66195
- SHA512
  
  b53ac27397ce5453fa008d1a2e98f9f66be7d7f08375b92c88007544c09ab844d6c8eeceb2221c988e0a0d6ffc2a8a290e49715e3062a74bcd2310d41bffcc37
- SSDEEP
  
  3072:VqD/ri6AM4odK4J663POAQgG8rYKvh+5Nl:V0xlIBwPOA+8Zhu
Score

10^/10

dridex botnet discovery
- Dridex
  Dridex(known as Bugat/Cridex) is a form of malware that specializes in stealing bank credentials.
  botnet dridex
- Dridex family
  dridex
- Deletes itself
- Network Share Discovery
  Attempt to gather information on host network.
  discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Network Share Discovery

Remote System Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

dridexbotnetdiscovery

behavioral2

dridexbotnetdiscovery