Overview

overview

10

Static

static

dridex

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2a23972a4a124648093f7804fd70f431d6634ea4a60dddd0157923ebe93b5ee7

  • Size

    207KB

  • Sample

    220907-gpwkdsgdbm

  • MD5

    3bc6508df6d2a5154f56ae5f62c28770

  • SHA1

    bb03e44fd865f2eb3f49027b7b3903f660dfa7bf

  • SHA256

    2a23972a4a124648093f7804fd70f431d6634ea4a60dddd0157923ebe93b5ee7

  • SHA512

    096a2760a559c02cd90f0514300971d3c9ec0107560b47ef09d478b6ebc6d1725705121153287be40ea8ce8865c3026bb53a0bcddedfc3b9b454ca0afcd7cded

  • SSDEEP

    3072:sqOiRhaOsgveRj91kQw+0aZBeO6vsBSFlkG3AtXVZAg/w0Rv4b:G6sgWCa6EBilkG3AtFJ

Score
10/10
smokeloaderbackdoortrojan

Malware Config

Targets

    • Target

      2a23972a4a124648093f7804fd70f431d6634ea4a60dddd0157923ebe93b5ee7

    • Size

      207KB

    • MD5

      3bc6508df6d2a5154f56ae5f62c28770

    • SHA1

      bb03e44fd865f2eb3f49027b7b3903f660dfa7bf

    • SHA256

      2a23972a4a124648093f7804fd70f431d6634ea4a60dddd0157923ebe93b5ee7

    • SHA512

      096a2760a559c02cd90f0514300971d3c9ec0107560b47ef09d478b6ebc6d1725705121153287be40ea8ce8865c3026bb53a0bcddedfc3b9b454ca0afcd7cded

    • SSDEEP

      3072:sqOiRhaOsgveRj91kQw+0aZBeO6vsBSFlkG3AtXVZAg/w0Rv4b:G6sgWCa6EBilkG3AtFJ

    Score
    10/10
    smokeloaderbackdoortrojan

    • Detects Smokeloader packer

    • SmokeLoader

      Modular backdoor trojan in use since 2014.

      trojanbackdoorsmokeloader

    • Executes dropped EXE

    • Suspicious use of SetThreadContext

    behavioral1

MITRE ATT&CK Enterprise v6

Tasks