Overview

overview

10

Static

static

dridex

windows10-1703-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    ebe3afae5c1cad7421b5194ba49038a3f4f828f18764ecfd8137b78d57117d3f

  • Size

    132KB

  • Sample

    221003-b7szbscffp

  • MD5

    5dc8fe5973f9663633518fd850a996c1

  • SHA1

    24c87757f1cc96c2f790946bf0348d81fd389ff4

  • SHA256

    ebe3afae5c1cad7421b5194ba49038a3f4f828f18764ecfd8137b78d57117d3f

  • SHA512

    3a2dc406c3ae7874d668207d0083deea467674d929a09f575c24ed88507ebcdcc61a58a595591ed8f5e92862a4b57ded623789860296d80e9cf225ef24982335

  • SSDEEP

    1536:HvEgLDfcMJTDORPlRor+w0/Hx7BSk5UdUtMsPOJOwy/st+hfBWGQHHwhZp:HvZntDORNRs0pRaUJ6hXtEf7sHwh

Score
10/10
smokeloaderbackdoortrojan

Malware Config

Targets

    • Target

      ebe3afae5c1cad7421b5194ba49038a3f4f828f18764ecfd8137b78d57117d3f

    • Size

      132KB

    • MD5

      5dc8fe5973f9663633518fd850a996c1

    • SHA1

      24c87757f1cc96c2f790946bf0348d81fd389ff4

    • SHA256

      ebe3afae5c1cad7421b5194ba49038a3f4f828f18764ecfd8137b78d57117d3f

    • SHA512

      3a2dc406c3ae7874d668207d0083deea467674d929a09f575c24ed88507ebcdcc61a58a595591ed8f5e92862a4b57ded623789860296d80e9cf225ef24982335

    • SSDEEP

      1536:HvEgLDfcMJTDORPlRor+w0/Hx7BSk5UdUtMsPOJOwy/st+hfBWGQHHwhZp:HvZntDORNRs0pRaUJ6hXtEf7sHwh

    Score
    10/10
    smokeloaderbackdoortrojan

    • Detects Smokeloader packer

    • SmokeLoader

      Modular backdoor trojan in use since 2014.

      trojanbackdoorsmokeloader

    • Executes dropped EXE

    • Deletes itself

    • Suspicious use of SetThreadContext

    behavioral1

MITRE ATT&CK Enterprise v6

Tasks