Dridex has been one of most notable threats since its appearance in late 2014 and throughout 2015. A strain of malware evolving from the infamous Zeus family, it is designed to steal personal banking information and credentials.
Its operators seem to focus on small and medium-sized organizations as targets. The attack is said to be responsible for the theft of over $50 million, out of which $30 million stolen from UK accounts alone.
The following report provides the details of a dynamic behavioral analysis over several samples of Dridex, focusing mainly on its infection and persistency methods.
