Dridex bots deliver Entropy ransomware in recent attacks
Tags
maec-delivery-vectors: Watering Hole
attack-pattern: Data Botnet - T1583.005 Botnet - T1584.005 Malware - T1587.001 Malware - T1588.001 Regsvr32 - T1218.010 Server - T1583.004 Server - T1584.004 Regsvr32 - T1117
Show in Graph
Common Information
Type Value
UUID 98db6e2a-df1d-461b-bd97-09dea3c6aced
Fingerprint a5268d592915cc0a
Analysis status DONE
Considered CTI value 0
Text language
Published Feb. 23, 2022, 11:30 a.m.
Added to db Sept. 26, 2022, 9:33 a.m.
Last updated Nov. 17, 2024, 6:53 p.m.
Headline Dridex bots deliver Entropy ransomware in recent attacks
Title Dridex bots deliver Entropy ransomware in recent attacks
Detected Hints/Tags/Attributes 74/2/10
Source URLs
Redirection Url
Details Source https://news.sophos.com/en-us/2022/02/23/dridex-bots-deliver-entropy-ransomware-in-recent-attacks/
Details Source https://news.sophos.com/en-us/2022/02/23/dridex-bots-deliver-entropy-ransomware-in-recent-attacks/?cmp=30728
URL Provider
Details Provider Source level domain
Details sophos.com news.sophos.com
Attributes
Details Type #Events CTI Value
Details Domain 8 
privatlab.com
Details Domain 10 
dropmefiles.com
Details Domain 77 
mega.nz
Details File 5 
comps.txt
Details File 1 
pdf.dll
Details File 122 
psexec.exe
Details File 8 
copy.bat
Details File 5 
exe.bat
Details File 1 
c:\users\public\xyz.dll
Details File 20 
snxhk.dll