Overview

overview

10

Static

static

dridex

windows10-1703-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    e5a21494f94d875629ff61533dedea182f11864a8367a06a942cd3441d475a14

  • Size

    244KB

  • Sample

    220908-hb4jhsdhc2

  • MD5

    1952a5ba5078b3fed49374cd1b46f219

  • SHA1

    754cccff3803b75d7251eaf8f8c2488f92746519

  • SHA256

    e5a21494f94d875629ff61533dedea182f11864a8367a06a942cd3441d475a14

  • SHA512

    6ea96b5e61d6f35ac2702a8ac481036ea13665afad1cb18a325c05ab97e86ce0b084e42ccecef62c611a71d8a0e8ab09f699c65455a050f785f584ebbb706e7e

  • SSDEEP

    6144:aYstvoDABjJMtO0tcLMHpkBvmYafIKh9Hp+RJ2Wye9zP8c:aY+oClMtWyIKLp+RJ2Wh4

Score
10/10
smokeloaderbackdoortrojan

Malware Config

Targets

    • Target

      e5a21494f94d875629ff61533dedea182f11864a8367a06a942cd3441d475a14

    • Size

      244KB

    • MD5

      1952a5ba5078b3fed49374cd1b46f219

    • SHA1

      754cccff3803b75d7251eaf8f8c2488f92746519

    • SHA256

      e5a21494f94d875629ff61533dedea182f11864a8367a06a942cd3441d475a14

    • SHA512

      6ea96b5e61d6f35ac2702a8ac481036ea13665afad1cb18a325c05ab97e86ce0b084e42ccecef62c611a71d8a0e8ab09f699c65455a050f785f584ebbb706e7e

    • SSDEEP

      6144:aYstvoDABjJMtO0tcLMHpkBvmYafIKh9Hp+RJ2Wye9zP8c:aY+oClMtWyIKLp+RJ2Wh4

    Score
    10/10
    smokeloaderbackdoortrojan

    • Detects Smokeloader packer

    • SmokeLoader

      Modular backdoor trojan in use since 2014.

      trojanbackdoorsmokeloader

    • Deletes itself

    • Suspicious use of SetThreadContext

    behavioral1

MITRE ATT&CK Enterprise v6

Tasks