34.0.0 Boulder Opal
IR
544850
CloudBasic
09:22:41
24/12/2021
Pv3ZsGsdfS.dll
default.jbs
Windows 10 64 bit v1803 with Office Professional Plus 2016, Chrome 85, IE 11, Adobe Reader DC 19, Java 8 Update 211
WINDOWS
63c22ce32346e029fa5a1ec1ae619d0f
222cf86c3b59f466292bb734be308cda77c3ddff
efbd76616dc1cd8210a8c54611f4ffa88e635f0f6ded2f8ff48311737635edda
Win32 Dynamic Link Library (generic) (1002004/3) 99.60%
true
false
false
false
76
0
100
5
0
5
false
C:\ProgramData\Microsoft\Windows\WER\ReportQueue\AppCrash_rundll32.exe_20f54535b4fc1ad4777e2f126bb0718bcd6544b5_82810a17_1a7fdfcd\Report.wer
false
29579360B22432DFC0550492B810C2AD
8F3695C341FABAE6CB0488C2E19838F3D67CBD61
448388426C2B1369CC525FC7649B835A8AC698E0612F88C1CDCA61984EDBE6B3
C:\ProgramData\Microsoft\Windows\WER\Temp\WERA8BF.tmp.dmp
false
6BA962499491EF50D34753FC43E70E78
FCDD29E7C70650CDEF5AAF15D6D1F65A6FB6D2AA
2BE1C84338A24B862508C72D428D18E0FBE77006CD10C163FF81F8DB9633FFD0
C:\ProgramData\Microsoft\Windows\WER\Temp\WERB1E8.tmp.WERInternalMetadata.xml
false
C2C685B0F4C57BF14EC69949014FC9E7
58ED607D8DEC974687FDB441B0957783BF57B567
DEDB1C1CC0FEE5C433A3F484A0568AA349701325FCB48CB71348FF473B16DE7B
C:\ProgramData\Microsoft\Windows\WER\Temp\WERB515.tmp.xml
false
A06DCD0393D3DE548D82518693742FB5
5BC6EE3EBF65DDFED1D0FFF8EB7BFE783D3805C3
E7F298466D4C663D368F7DB05BF9F8FF076694B9BED76FFE750D46D37284BB31
C:\Windows\appcompat\Programs\Amcache.hve
false
D72F427F707F671A84F3C7CC3E4E3041
87173A87D9B1CDE0B1A53029D30AA52223C94363
191CEA16D005286BDA625C0F12DDCC07C9DF3F7025F9236F11B2858604A1B167
C:\Windows\appcompat\Programs\Amcache.hve.LOG1
false
4A5692F77C142A5C921951F412C73996
118246C8365CADD57FCF448B9D491BAD688E70E8
84058CF94519C692DCBC143DCB31998D33CFC649A143071E5373984EA6CD7468
185.4.135.27
85.10.248.28
80.211.3.13
144.91.122.102
Found malware configuration
Yara detected Dridex unpacked file
Multi AV Scanner detection for submitted file
Sigma detected: Suspicious Call by Ordinal
Tries to delay execution (extensive OutputDebugStringW loop)
C2 URLs / IPs found in malware configuration