Overview

overview

10

Static

static

dridex

windows10-2004_x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    776925565dcfdf32471af9799022144a42a7df41bf1ef5e3d0baa62c7d764a55

  • Size

    306KB

  • Sample

    220522-bmcrlseda8

  • MD5

    7583a2db144f75675d44ab6eac936b84

  • SHA1

    168402ac08048e24e10bc839498b54d87ec9fa17

  • SHA256

    776925565dcfdf32471af9799022144a42a7df41bf1ef5e3d0baa62c7d764a55

  • SHA512

    12afa2a7456dbd240f9e302ff66a5c31ddd6ddec60ff5d859990e4be02cdc0d0ce309f106a62ec1b878d247e4f70a033783e4dc75b53f98549c38d027642d8ec

Score
10/10
smokeloaderbackdoorevasiontrojan

Malware Config

Extracted

Family

smokeloader

Version

2020

C2

https://ny-city-mall.com/search.php

https://fresh-cars.net/search.php
rc4.i32
rc4.i32

Targets

    • Target

      776925565dcfdf32471af9799022144a42a7df41bf1ef5e3d0baa62c7d764a55

    • Size

      306KB

    • MD5

      7583a2db144f75675d44ab6eac936b84

    • SHA1

      168402ac08048e24e10bc839498b54d87ec9fa17

    • SHA256

      776925565dcfdf32471af9799022144a42a7df41bf1ef5e3d0baa62c7d764a55

    • SHA512

      12afa2a7456dbd240f9e302ff66a5c31ddd6ddec60ff5d859990e4be02cdc0d0ce309f106a62ec1b878d247e4f70a033783e4dc75b53f98549c38d027642d8ec

    Score
    10/10
    smokeloaderbackdoorevasiontrojan
    behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Command-Line Interface

1
T1059

Persistence

Modify Existing Service

1
T1031

Privilege Escalation

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

Query Registry

1
T1012

Peripheral Device Discovery

1
T1120

System Information Discovery

3
T1082

Process Discovery

1
T1057

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks