Malware-Traffic-Analysis.net - 2020-04-27 - Quick post: Dridex malspam and infection

2020-04-27 - QUICK POST: DRIDEX MALSPAM AND INFECTION

NOTICE:

The zip archives on this page have been updated, and they now use the new password scheme. For the new password, see the "about" page of this website.

ASSOCIATED FILES:

2020-04-27-Dridex-malspam-2-email-examples.zip 106 kB (105,662 bytes)

2020-04-27-Dridex-malspam-example-1-of-2.eml (118,490 bytes)

2020-04-27-Dridex-malspam-example-2-of-2.eml (116,664 bytes)

2020-04-27-Dridex-infection-traffic.pcap.zip 5.7 MB (5,665,498 bytes)

2020-04-27-Dridex-infection-traffic.pcap (5,999,208 bytes)

2020-04-27-Dridex-malware-and-artifacts.zip 2.7 MB (2,695,256 bytes)

2020-04-27-initial-Dridex-DLL-retreived-by-XLS-macros.bin (392,192 bytes)

2020-04-27-malspam-attachment-XLS-file-with-macro-for-Dridex.bin (73,216 bytes)

2020-04-27-registry-entry-for-Dridex.txt (720 bytes)

2020-04-27-scheduled-task-for-Dridex.txt (3,658 bytes)

2020-04-27-startup-menu-shortcut-for-Dridex.bin (1,878 bytes)

MDal6VoM/SndVol.exe (264,152 bytes)

MDal6VoM/UxTheme.dll (733,184 bytes)

fhExRDaH/mmGK7xb/SYSDM.CPL (733,184 bytes)

fhExRDaH/mmGK7xb/SystemPropertiesPerformance.exe (83,968 bytes)

fhExRDaH/DUI70.dll (1,015,808 bytes)

fhExRDaH/phoneactivate.exe (107,616 bytes)

lL/WindowsActionDialog.exe (60,928 bytes)

lL/DUI70.dll (1,015,808 bytes)

Click here to return to the main page.