Overview

overview

10

Static

static

dridex

windows10-1703-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    58b1513b40a53a33b4de447893124c8d9cf94e7f70494a0e91e65b7bbaf2c294

  • Size

    265KB

  • Sample

    220916-j9n26afbc9

  • MD5

    19f8f9319b4f08b1675f20610afda2c2

  • SHA1

    782e1f4a06025237080cbe844cc071e91a0c30fa

  • SHA256

    58b1513b40a53a33b4de447893124c8d9cf94e7f70494a0e91e65b7bbaf2c294

  • SHA512

    c7a9903bcb96c776da98faec755ca821cbc1b0afca67364a0227d331c1d7c93973807762ffd558c376fa0c25fc6b99fac039cf7e09efef5a12a925baae928d5b

  • SSDEEP

    3072:wFXjORXY28Yl5WTuHB+GmgPBTx1ECF9XY70Kucuh9NC/M/h3BsxkgaBChU6:S6TcqHB+w9Agi70HcurNC/niga

Score
10/10
smokeloaderbackdoortrojan

Malware Config

Targets

    • Target

      58b1513b40a53a33b4de447893124c8d9cf94e7f70494a0e91e65b7bbaf2c294

    • Size

      265KB

    • MD5

      19f8f9319b4f08b1675f20610afda2c2

    • SHA1

      782e1f4a06025237080cbe844cc071e91a0c30fa

    • SHA256

      58b1513b40a53a33b4de447893124c8d9cf94e7f70494a0e91e65b7bbaf2c294

    • SHA512

      c7a9903bcb96c776da98faec755ca821cbc1b0afca67364a0227d331c1d7c93973807762ffd558c376fa0c25fc6b99fac039cf7e09efef5a12a925baae928d5b

    • SSDEEP

      3072:wFXjORXY28Yl5WTuHB+GmgPBTx1ECF9XY70Kucuh9NC/M/h3BsxkgaBChU6:S6TcqHB+w9Agi70HcurNC/niga

    Score
    10/10
    smokeloaderbackdoortrojan

    • Detects Smokeloader packer

    • SmokeLoader

      Modular backdoor trojan in use since 2014.

      trojanbackdoorsmokeloader

    • Deletes itself

    • Suspicious use of SetThreadContext

    behavioral1

MITRE ATT&CK Enterprise v6

Tasks