Overview

overview

10

Static

static

dridex

windows10_x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    82da7b94a1878d40e860793cfa53a611757d20b397d06cffe8bdb09c0f9d52c1

  • Size

    319KB

  • Sample

    211203-ldcqcsahh9

  • MD5

    51b16edf833ef5a156024f321bde1613

  • SHA1

    f39d0394f9ea8a33fc5b84d41148772a75ed2fe2

  • SHA256

    82da7b94a1878d40e860793cfa53a611757d20b397d06cffe8bdb09c0f9d52c1

  • SHA512

    e27bfc2822521ce4239f5363a885a46f51b99fa2f0307a8b116dfb400ed10a6ccc71c5da7aa72d4df92fe2a8d9e2d0c99fd9396ce8f27de001f7afad5a92b9ae

Score
10/10
smokeloaderbackdoorcollectionevasiontrojan

Malware Config

Extracted

Family

smokeloader

Version

2020

C2

https://cinems.club/search.php

https://clothes.surf/search.php
rc4.i32
rc4.i32

Targets

    • Target

      82da7b94a1878d40e860793cfa53a611757d20b397d06cffe8bdb09c0f9d52c1

    • Size

      319KB

    • MD5

      51b16edf833ef5a156024f321bde1613

    • SHA1

      f39d0394f9ea8a33fc5b84d41148772a75ed2fe2

    • SHA256

      82da7b94a1878d40e860793cfa53a611757d20b397d06cffe8bdb09c0f9d52c1

    • SHA512

      e27bfc2822521ce4239f5363a885a46f51b99fa2f0307a8b116dfb400ed10a6ccc71c5da7aa72d4df92fe2a8d9e2d0c99fd9396ce8f27de001f7afad5a92b9ae

    Score
    10/10
    smokeloaderbackdoorcollectionevasiontrojan
    behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Command-Line Interface

1
T1059

Persistence

Modify Existing Service

1
T1031

Privilege Escalation

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

Query Registry

1
T1012

Peripheral Device Discovery

1
T1120

System Information Discovery

3
T1082

Process Discovery

1
T1057

Lateral Movement

Collection

Email Collection

1
T1114

Exfiltration

Command and Control

Impact

Tasks