Contact Sales Get Support

IQ-FA006:Dridex XLS Documents with Fancy Lures

Posted on 2020-06-08 by William MacArthur

Dridex XLS maldocs with an updated Fancy Image Lure.

Fancy New Lure

InQuest Score

InQuest Score Note: Out of 10

VT Score

VirusTotal Score

Historic Low VT Scores

Low Scores

Indicators

Date Observed Indicator Type Indicator          
6/05/2020     C2 Domain    adrelatemedia.com 
6/05/2020     C2  URL   https://www.adrelatemedia.com/haidress/gmail.php 
6/08/2020     C2, Malware Download  http://adrelatemedia.com/haidress/835w55a4r.exe
6/08/2020     C2, Malware Download  http://adrelatemedia.com/haidress/925w55a4r.exe 
6/08/2020     C2, Malware Download  http://adrelatemedia.com/haidress/61w55a4r.exe
6/08/2020     C2, Malware Download  http://adrelatemedia.com/haidress/669w55a4r.exe
6/08/2020     C2, Malware Download  http://adrelatemedia.com/haidress/919w55a4r.exe
6/08/2020     C2, Malware Download  http://adrelatemedia.com/haidress/938w55a4r.exe
6/08/2020     C2, Malware Download  http://adrelatemedia.com/haidress/264w55a4r.exe
6/08/2020     C2, Malware Download  http://adrelatemedia.com/haidress/899w55a4r.exe
6/08/2020     C2, Malware Download  http://adrelatemedia.com/haidress/846w55a4r.exe
6/08/2020     C2, Malware Download  http://adrelatemedia.com/haidress/845w55a4r.exe
6/08/2020     C2, Malware Download  http://adrelatemedia.com/haidress/69w55a4r.exe
6/08/2020     C2, Malware Download  http://adrelatemedia.com/haidress/408w55a4r.exe
6/08/2020     C2, Malware Download  http://adrelatemedia.com/haidress/403w55a4r.exe
6/08/2020     C2, Malware Download  http://adrelatemedia.com/haidress/31dsdfsdfsdf.exe
6/08/2020     C2, Malware Download  http://adrelatemedia.com/haidress/393w55a4r.exe

Associated Maldocs

Date Observed Indicator Type Indicator           Notes/Reports
06/08/2020 Maldoc Hash 191832476af317aabe90cff7b0f16241acd8df9ee44a476bd1d206a138de6777 InQuest Labs, VirusTotal
06/08/2020 Maldoc Hash 1b27af50c09daedcf39982a0673d8ad08261fd20c9a7d840814699a24d92a5cf InQuest Labs, VirusTotal
06/08/2020 Maldoc Hash 1c49a77f9b817c8b7670cb06d96c3ecee6f1c34e910533b1020bb4948bf1701d InQuest Labs, VirusTotal
06/08/2020 Maldoc Hash 1c8a36d488b50edb22ade0168e8eb4dc4615a44a08431541fd8b1a7114eb9b23 InQuest Labs, VirusTotal
06/08/2020 Maldoc Hash 20c6f5cfe318e013502aee7e52dca337264a2aab8da32b32347399b98e8922ff InQuest Labs, VirusTotal
06/08/2020 Maldoc Hash 2bb379f1ee08c6c1aedf20cdb4feec2b5db08767c6d9ba6cad2d3dc13ade8609 InQuest Labs, VirusTotal
06/08/2020 Maldoc Hash 328c729797fe2acbf06246dfca52c2f75c0713849fa588dd5c414e0e18244c54 InQuest Labs, VirusTotal
06/08/2020 Maldoc Hash 3bbcf3542a72193b90de7c74203dc8b9c9c3896f4234f36ed36f6d082c13f310 InQuest Labs, VirusTotal
06/08/2020 Maldoc Hash 3fb1e4091ffbea04a93d5ef7ed5ef4bd8f4eaea58fb1763507df2ef8ccb73ae3 InQuest Labs, VirusTotal
06/08/2020 Maldoc Hash 4d55b07a3c375d8e63afbf93bce0f6a1f25327b8336659cfa0afa07be13296c1 InQuest Labs, VirusTotal
06/08/2020 Maldoc Hash 4eece164c7d6273a0fd7f91df8ea2fc557da8e1225aac1890c1e490cd1fd4750 InQuest Labs, VirusTotal
06/08/2020 Maldoc Hash 505313dded044c950cf4c0e27ff188391867ec7dd20d28e1dece3732f9ee92be InQuest Labs, VirusTotal
06/08/2020 Maldoc Hash 60201e4cbce3b0a62e1a305716f17898d4ab6eb0e346adeb99aec56e632c9715 InQuest Labs, VirusTotal
06/08/2020 Maldoc Hash 607ee35288b437cdf89cb147281ab959e4b42051a299401293b0b54baff52710 InQuest Labs, VirusTotal
06/08/2020 Maldoc Hash 63c396781b3e1a09f57da685dbb2fe1852e04c92b42d2dec08827861ce85f6ae InQuest Labs, VirusTotal
06/08/2020 Maldoc Hash 64c7eaf9ceb0d6fe5918d25953bfb86a3c7c2ba2fd4ae555495ec7cd9244d376 InQuest Labs, VirusTotal
06/08/2020 Maldoc Hash 69ba6673c4223bb1b6cbe342ba8988ce1b6574d21dce31a81288a8e83b9d71de InQuest Labs, VirusTotal
06/08/2020 Maldoc Hash 6a33c85cfc4d63e0f2ab9c7e9b11ef901fd9214ceed47a26b054d7ac668e5927 InQuest Labs, VirusTotal
06/08/2020 Maldoc Hash 6c0ee9ad6608774ccc6f2d1b4fc10d25db600a1ab147c38b862f985325d00d69 InQuest Labs, VirusTotal
06/08/2020 Maldoc Hash 6dd413cda5f640218e53068fcdeaa8095d43cfa08d7ae31bc1294b578eda3650 InQuest Labs, VirusTotal
06/08/2020 Maldoc Hash 7294b0fcd60f333401410205724a6a7d4b1a1c166624a3a897eb74dd9e878f3d InQuest Labs, VirusTotal
06/08/2020 Maldoc Hash 74af1f6462c201ea1dcc02c8be66fdadb6c6f7c739c1a9788fa721bd37dc9d44 InQuest Labs, VirusTotal
06/08/2020 Maldoc Hash 764e871c333d53cdf00e42bb5e415e09fa268566f405e1e3b95c70293faeae4f InQuest Labs, VirusTotal
06/08/2020 Maldoc Hash 7ae4e7e1241276b32acae1609fe081e95ee5104424502ff17619f36a2e489639 InQuest Labs, VirusTotal
06/08/2020 Maldoc Hash 7c77d76d04818ed18f27abfe40845e6d47d7cd2b5a6ca7405fa75d0bd4a84e6a InQuest Labs, VirusTotal
06/08/2020 Maldoc Hash 7e7ba697ecdd7cb1d19c70b30c96575d256032854bd6bb8e4f5fb4d18f5a0152 InQuest Labs, VirusTotal
06/08/2020 Maldoc Hash 7fba5767a9bc61981cf53383b2518a9c528ade03085865212d868da802e2ec41 InQuest Labs, VirusTotal
06/08/2020 Maldoc Hash 8624ed0e25319e3e6092df564b61fdd20620980b2eb424e7b77dd41fc3422f78 InQuest Labs, VirusTotal
06/08/2020 Maldoc Hash 8b98d4c61184c2f90585f84db9b94fa372e850c604dd51fd7d307b1a735c185d InQuest Labs, VirusTotal
06/08/2020 Maldoc Hash 8bf46bbd626c107433372b39aba3719f1744244eb37b1aa7c72956bf9346ac15 InQuest Labs, VirusTotal
06/08/2020 Maldoc Hash 921026611780fe1d168a559852a3b17b408c65d9dc7ffb4650537577d71fa67b InQuest Labs, VirusTotal
06/08/2020 Maldoc Hash 9bd112a6b7bc00b0e83b81965e1a71f60f977d337aa37811d023d4adad541f81 InQuest Labs, VirusTotal
06/08/2020 Maldoc Hash b5de9e7c9eac0d1253ee4a0e38081a22f6d0070025507378affea6f571cc1b15 InQuest Labs, VirusTotal
06/08/2020 Maldoc Hash b8f4ab06d86cecdf78bde1ff0c415825ce2008b80f511bc715c96799e27ede54 InQuest Labs, VirusTotal
06/08/2020 Maldoc Hash bbe972bd9a361d24d30b123b1fda8ece3fb4bc1cbc4a872c560c6a76c7fb6b33 InQuest Labs, VirusTotal
06/08/2020 Maldoc Hash bdd2bce8bf6d86503a022ca77d7d10051e7d7e67fcfd39bdf7c64cd3e4b96f01 InQuest Labs, VirusTotal
06/08/2020 Maldoc Hash c18ed4f3ebbe80de53d9742ef9bca94c5cccb384db1e022d39d627da12501e81 InQuest Labs, VirusTotal
06/08/2020 Maldoc Hash c3c5b54d4393654bbc34a98babd549ddc1a2fa7509217f53d84f2f81e8a85dea InQuest Labs, VirusTotal
06/08/2020 Maldoc Hash c69e1a03f2d71653e33408cfbd16fbb2f7eec647b89e4dcfad6a52f647aa7ac2 InQuest Labs, VirusTotal
06/08/2020 Maldoc Hash c70f06458faf1796a28c42f62647cac5948af982178cf1d5e61b70f3506a71c1 InQuest Labs, VirusTotal
06/08/2020 Maldoc Hash c735d45bbe1fa079409ae26d005a346f4698efb7e9f4db7bc2d0b247b57546f6 InQuest Labs, VirusTotal
06/08/2020 Maldoc Hash c896c5e5a5d0abd059e43dbc305f50be63ff74b88547d8f7ce75608d4c8dc2d4 InQuest Labs, VirusTotal
06/08/2020 Maldoc Hash c957de05aec8c4f295bec80711f2e934b837117094abcdd46098486c6f2934a9 InQuest Labs, VirusTotal
06/08/2020 Maldoc Hash cdc0ab79215e6c36de186ddfbed8e9b35c4c63161349c0935a90c69f553b318f InQuest Labs, VirusTotal
06/08/2020 Maldoc Hash d6e74f61b642eb614bcb745454fa23294f747603d64ec78d785acff8f8d16c28 InQuest Labs, VirusTotal
06/08/2020 Maldoc Hash d997c1521407c74bcd9a33960d3fcb75470b11261ca8fe809ab28e60a2f9fa55 InQuest Labs, VirusTotal
06/08/2020 Maldoc Hash defb31a9d386b63779fe2006c261fc7913d2229f953fdf6caecaab9d53dd8fa4 InQuest Labs, VirusTotal
06/08/2020 Maldoc Hash e0c1189c63833e6dde70198558dc92b95ca0c8050e117dce432d2e9a838b7513 InQuest Labs, VirusTotal
06/08/2020 Maldoc Hash e1613169e4cca79ce0b36dec67f986e346ff4f40728f8f1750656871131785eb InQuest Labs, VirusTotal
06/08/2020 Maldoc Hash e38a95d1eb1b6f4c339954e2585549d336ea27b9fe76115abba8a1bfcfde8d79 InQuest Labs, VirusTotal
06/08/2020 Maldoc Hash e3a208481ae96872fcf001068171340b53536b9dd00c42e160a3b10ea499ff73 InQuest Labs, VirusTotal
06/08/2020 Maldoc Hash e4474de8aba502effb317894bdb9fa3337ab337584884ca67689718d74428049 InQuest Labs, VirusTotal
06/08/2020 Maldoc Hash eb34a5211e692ba3b703f23d943f1f4a71f82faa886fb44409b1d93340d68b3b InQuest Labs, VirusTotal
06/08/2020 Maldoc Hash eb999aa4f1e79ed883460285525c7116bb1d771462da92af870b61b9f5afc2d5 InQuest Labs, VirusTotal
06/08/2020 Maldoc Hash eca656418b0b1319fcd56156abf8970e903e042fb5ef56586c38394435989191 InQuest Labs, VirusTotal
06/08/2020 Maldoc Hash eccadcce17e5b016fbafa5858cb182e4b861d783590c5215ce0f0c8e9bfb4c4e InQuest Labs, VirusTotal
06/08/2020 Maldoc Hash ef9af8969dccabad32eea973e55ff9d7c8b55e68bc492f38b7289417dd04d991 InQuest Labs, VirusTotal
06/08/2020 Maldoc Hash f1669e315fa97d94329f6ff142dc844db1cd5cf98f0c3c908f11a28127a1e3a2 InQuest Labs, VirusTotal
06/08/2020 Maldoc Hash f3b298b3272983fd118f42817ead6259fb46a31b22ac8f68eed54c2f28288fbb InQuest Labs, VirusTotal
06/08/2020 Maldoc Hash f50c3e60db8adf31187448082ff4a783feb495b9545280ed23a65f89184f9236 InQuest Labs, VirusTotal
06/08/2020 Maldoc Hash f67352ac345d03d511cb634d72798d06df3b74e4a8d34aa2c91692ad27adcfbf InQuest Labs, VirusTotal
06/08/2020 Maldoc Hash f92c361f4849bdb8296fe20c394b3875e648f7c3d18e581bb5907c70451913c8 InQuest Labs, VirusTotal
06/08/2020 Maldoc Hash fa37860944ee07b416cf634c758d32660af30baca16148cb0c66ccbf8bcf6465 InQuest Labs, VirusTotal
06/08/2020 Maldoc Hash ff03f367647fdc3e93f2f7e73c70ed381b71605443f2b051b901d1eb80493854 InQuest Labs, VirusTotal
06/08/2020 Maldoc Hash ff5516ee7e4f734c4ae70e8f6fbf3fad09bb0ba99e67916972fe308ba5c4acad InQuest Labs, VirusTotal
Tags
Dridex Hunting OSINT

All Flash Alerts