Overview

overview

10

Static

static

dridex

windows10-1703-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    778da7b7fe5ce9d8754a3e46333490344b1ab8f8284fd908cda8608c351a81a6

  • Size

    328KB

  • Sample

    220927-wk361afbfk

  • MD5

    2c7dd32b667a98af61854cae283b3880

  • SHA1

    9dbb3a72a2fac91f01c2127ee9575350f9f00345

  • SHA256

    778da7b7fe5ce9d8754a3e46333490344b1ab8f8284fd908cda8608c351a81a6

  • SHA512

    ab96efa18fc97060440c908e24a92132e10c4af78ab141865403ebf49377ff13d54046e3c61d70829ca3fe3f36e42c25e3502078923bb66724d3a3c54abbdf30

  • SSDEEP

    6144:EPH+lrVgZXqBQXKWUUM7pc47v0gVWnigabwVfs:EPHM5gZaMKkM764YKWiB

Score
10/10
smokeloaderbackdoortrojan

Malware Config

Targets

    • Target

      778da7b7fe5ce9d8754a3e46333490344b1ab8f8284fd908cda8608c351a81a6

    • Size

      328KB

    • MD5

      2c7dd32b667a98af61854cae283b3880

    • SHA1

      9dbb3a72a2fac91f01c2127ee9575350f9f00345

    • SHA256

      778da7b7fe5ce9d8754a3e46333490344b1ab8f8284fd908cda8608c351a81a6

    • SHA512

      ab96efa18fc97060440c908e24a92132e10c4af78ab141865403ebf49377ff13d54046e3c61d70829ca3fe3f36e42c25e3502078923bb66724d3a3c54abbdf30

    • SSDEEP

      6144:EPH+lrVgZXqBQXKWUUM7pc47v0gVWnigabwVfs:EPHM5gZaMKkM764YKWiB

    Score
    10/10
    smokeloaderbackdoortrojan

    • Detects Smokeloader packer

    • SmokeLoader

      Modular backdoor trojan in use since 2014.

      trojanbackdoorsmokeloader

    • Deletes itself

    • Suspicious use of SetThreadContext

    behavioral1

MITRE ATT&CK Enterprise v6

Tasks