Overview

overview

10

Static

static

dridex

windows10-1703-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    b121e8b27a8908440add2988798d1d8107c572b75ea4f60ca15da113a4011b46

  • Size

    198KB

  • Sample

    220909-v4bqesgga7

  • MD5

    79cba550bd259ab14d95a22768a1239a

  • SHA1

    b4cddc0f16b590cbf10bc45874dfe5aec4232437

  • SHA256

    b121e8b27a8908440add2988798d1d8107c572b75ea4f60ca15da113a4011b46

  • SHA512

    aae6452d1cafb9e41814f6373f7bc0bb2f88ae12ffdae1b25bd0e0f90568579a025837ed7933c467d323159e50273da9d059e0e4615d4fe7510b80c8e958bd5b

  • SSDEEP

    3072:cZ+lZfyLQc7qt/5OiDPxlaOLXoDYjM2fF7/xNVUmASBl5Wdx/:znEQIqu4plJoDY42F7pNVUmA/

Score
10/10
smokeloaderbackdoortrojan

Malware Config

Targets

    • Target

      b121e8b27a8908440add2988798d1d8107c572b75ea4f60ca15da113a4011b46

    • Size

      198KB

    • MD5

      79cba550bd259ab14d95a22768a1239a

    • SHA1

      b4cddc0f16b590cbf10bc45874dfe5aec4232437

    • SHA256

      b121e8b27a8908440add2988798d1d8107c572b75ea4f60ca15da113a4011b46

    • SHA512

      aae6452d1cafb9e41814f6373f7bc0bb2f88ae12ffdae1b25bd0e0f90568579a025837ed7933c467d323159e50273da9d059e0e4615d4fe7510b80c8e958bd5b

    • SSDEEP

      3072:cZ+lZfyLQc7qt/5OiDPxlaOLXoDYjM2fF7/xNVUmASBl5Wdx/:znEQIqu4plJoDY42F7pNVUmA/

    Score
    10/10
    smokeloaderbackdoortrojan

    • Detects Smokeloader packer

    • SmokeLoader

      Modular backdoor trojan in use since 2014.

      trojanbackdoorsmokeloader

    • Deletes itself

    • Suspicious use of SetThreadContext

    behavioral1

MITRE ATT&CK Enterprise v6

Tasks