Overview

overview

10

Static

static

dridex

windows10-1703-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    c396d670cb7b4242a7dcd0973f854485256fb703faafe67b8af4cd6780c6e2a7

  • Size

    146KB

  • Sample

    221006-ldbs3ahbcl

  • MD5

    eeb62e1eaf428cc422d1bda92efe0aad

  • SHA1

    1dd03f4fe81cff4b37c421554c8d151f5b5cb63f

  • SHA256

    c396d670cb7b4242a7dcd0973f854485256fb703faafe67b8af4cd6780c6e2a7

  • SHA512

    7894e585e5d0b7a6b98df3b1342d7d2de35281d1c607fcfd9a57ee282efde73c8e333d44bad5723a6efdf52ff719f933852c7344673323dfbb6cca44850caf56

  • SSDEEP

    3072:sG2AiE5B+KvTNzepuwpL/6KuxX79p4hjiO:RkEXvgAwpL/6KAg2

Score
10/10
smokeloaderbackdoortrojan

Malware Config

Targets

    • Target

      c396d670cb7b4242a7dcd0973f854485256fb703faafe67b8af4cd6780c6e2a7

    • Size

      146KB

    • MD5

      eeb62e1eaf428cc422d1bda92efe0aad

    • SHA1

      1dd03f4fe81cff4b37c421554c8d151f5b5cb63f

    • SHA256

      c396d670cb7b4242a7dcd0973f854485256fb703faafe67b8af4cd6780c6e2a7

    • SHA512

      7894e585e5d0b7a6b98df3b1342d7d2de35281d1c607fcfd9a57ee282efde73c8e333d44bad5723a6efdf52ff719f933852c7344673323dfbb6cca44850caf56

    • SSDEEP

      3072:sG2AiE5B+KvTNzepuwpL/6KuxX79p4hjiO:RkEXvgAwpL/6KAg2

    Score
    10/10
    smokeloaderbackdoortrojan

    • Detects Smokeloader packer

    • SmokeLoader

      Modular backdoor trojan in use since 2014.

      trojanbackdoorsmokeloader

    • Deletes itself

    • Suspicious use of SetThreadContext

    behavioral1

MITRE ATT&CK Enterprise v6

Tasks