dridex | c7990f1e72fdfa84552f02f9d11cabb74251b0508291af5366fefcee646f9c91 | Triage

Sharing

General

Target

c7990f1e72fdfa84552f02f9d11cabb74251b0508291af5366fefcee646f9c91
Size

132KB
Sample

250203-y6aspaskht
MD5

274385a8580daa9b30543d6204250280
SHA1

4c5c459a7067f1177a49af80a1e44d8916706457
SHA256

c7990f1e72fdfa84552f02f9d11cabb74251b0508291af5366fefcee646f9c91
SHA512

b7d62a36ecd95bf04c7ee244b4ec6d51e6d9c77be02f73a463d9ee18039a8bc10cb7710862cfc74f91ef49139ff0e9bc48f3228ad071b24fb32b79814908c863
SSDEEP

3072:mQPU+oMH1RYDuHlJ4R34t7Rafe6SRlQQIKf0T:mEU+o81RYDuFyRoLgxmQp

Score

10^/10

dridex 22201 botnet discovery loader

Malware Config

Extracted

Family

dridex

Botnet

22201

C2

103.42.56.15:443

169.255.57.61:8116

128.199.192.135:6602

rc4.plain

rc4.plain

Targets

- Target
  
  c7990f1e72fdfa84552f02f9d11cabb74251b0508291af5366fefcee646f9c91
- Size
  
  132KB
- MD5
  
  274385a8580daa9b30543d6204250280
- SHA1
  
  4c5c459a7067f1177a49af80a1e44d8916706457
- SHA256
  
  c7990f1e72fdfa84552f02f9d11cabb74251b0508291af5366fefcee646f9c91
- SHA512
  
  b7d62a36ecd95bf04c7ee244b4ec6d51e6d9c77be02f73a463d9ee18039a8bc10cb7710862cfc74f91ef49139ff0e9bc48f3228ad071b24fb32b79814908c863
- SSDEEP
  
  3072:mQPU+oMH1RYDuHlJ4R34t7Rafe6SRlQQIKf0T:mEU+o81RYDuFyRoLgxmQp
Score

3^/10

discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

botnetloader22201dridex

behavioral1

behavioral2