Overview

overview

10

Static

static

3

Dridex.Jhi...ll.exe

windows7-x64

10

Dridex.Jhi...ll.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Dridex.JhiSharp.dll.9d75ff0e9447ceb89c90cca24a1dbec1_

  • Size

    148KB

  • Sample

    250212-2sc8fazmc1

  • MD5

    9d75ff0e9447ceb89c90cca24a1dbec1

  • SHA1

    ebae1054d69619e9e70c9b2e806edb9000d7feb9

  • SHA256

    f2b33edb7efa853eb7f11cb8259243238e220fdc0bfc6987835ba1b12c4af1eb

  • SHA512

    6df94dbe3681c1cb572d63e54a6753b3bae7075b86507f33f152795c6e61f1feac6742986d7c72a2834f28c85d0a1890bb31b5888b98b29754300dceb63e210d

  • SSDEEP

    1536:t1hWmKdZ9WmQTt+6KK2Ml+dZyx6wVIWiwiuvro1d2C91q5nYaY4vV4KBmX:t1hYZQtTt+02G+dHgMuzWZ1qISVkX

Score
10/10
dridexbotnetdiscovery

Malware Config

Targets

    • Target

      Dridex.JhiSharp.dll.9d75ff0e9447ceb89c90cca24a1dbec1_

    • Size

      148KB

    • MD5

      9d75ff0e9447ceb89c90cca24a1dbec1

    • SHA1

      ebae1054d69619e9e70c9b2e806edb9000d7feb9

    • SHA256

      f2b33edb7efa853eb7f11cb8259243238e220fdc0bfc6987835ba1b12c4af1eb

    • SHA512

      6df94dbe3681c1cb572d63e54a6753b3bae7075b86507f33f152795c6e61f1feac6742986d7c72a2834f28c85d0a1890bb31b5888b98b29754300dceb63e210d

    • SSDEEP

      1536:t1hWmKdZ9WmQTt+6KK2Ml+dZyx6wVIWiwiuvro1d2C91q5nYaY4vV4KBmX:t1hYZQtTt+02G+dHgMuzWZ1qISVkX

    Score
    10/10
    dridexbotnetdiscovery

    • Dridex

      Dridex(known as Bugat/Cridex) is a form of malware that specializes in stealing bank credentials.

      botnetdridex

    • Dridex family

      dridex

    • Downloads MZ/PE file

    • Deletes itself

    • Network Share Discovery

      Attempt to gather information on host network.

      discovery
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks