2018-01-25 - QUICK POST: DRIDEX MALSPAM

ASSOCIATED FILES:

• Zip archive of the pcaps:  2018-01-25-Dridex-malspam-infection-traffic-2-pcaps.zip   800 kB (800,083 bytes)

• 2018-01-25-Dridex-malspam-infection-traffic-1-of-2.pcap   (233,517 bytes)
• 2018-01-25-Dridex-malspam-infection-traffic-2-of-2.pcap   (725,501 bytes)

• Zip archive of the emails and malware:  2018-01-25-Dridex-malspam-and-malware.zip   kB (229,602 bytes)

• 114755590.7z   (2041 bytes)
• 114755590.vbs   (4950 bytes)
• 2018-01-25-Dridex-malspam-with-attachment-1234-UTC.eml   (5,145 bytes)
• 2018-01-25-Dridex-malspam-with-link-1649-UTC.eml   (6,395 bytes)
• 2018-01-25-Dridex-sample-from-chimachinenow.com.exe   (143,360 bytes)
• 2018-01-25-Dridex-sample-from-revolutioncomponents.com.exe   (147,456 bytes)
• eFax_12128057747-20180126-025.js   (11,090 bytes)
• eFax_12128057747-20180126-025.zip   (7,825 bytes)

• Zip archive of the IOC notes:  2018-01-25-Dridex-malspam-notes.txt.zip   1.3 kB (1,322 bytes)

• 2018-01-25-Dridex-malspam-notes.txt   (2,506 bytes)

 

NOTE:  All zip archives on this siteare password-protected with the standard password.  If you don't know it, look at the "about" page of this website.

 

Click here to return to the main page.