Trojan

Dridex

First seen: 2014-06 • Status: active

Currently Active Threat

Dridex steals your banking passwords and can install ransomware. It spreads through email attachments.

Overview

Dridex is a banking trojan that steals credentials and delivers ransomware.

Also Known As

Bugat, Cridex

How It Spreads

  • Phishing emails
  • Malicious Office documents
  • Exploit kits

What It Does

  • Steals banking credentials
  • Keylogging
  • Delivers ransomware
  • Form grabbing

Is your business exposed?

Target Platforms

Windows

Detection Tips

  • Block Office macros
  • Monitor for credential theft

MITRE ATT&CK Techniques

T1566, T1059, T1056

If You're Infected

  1. 1.

    Isolate infected systems

  2. 2.

    Change banking credentials

Related Malware

Emotet, Trickbot

Is your business exposed?

Check if your company data is circulating on the dark web

Free scan • No credit card required

Privacy PolicyYour Privacy Choices