Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

dridex

windows10-1703-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    ba4e96637214455b7a9df148f365b47630d09dfe2bb8257b924b2a6535dfc731

  • Size

    197KB

  • Sample

    221018-r1gwgsgbc3

  • MD5

    f9576d1cdb7ee25d5a2ceb8e82b963f4

  • SHA1

    0f34f84778607141712851868626dec957da6306

  • SHA256

    ba4e96637214455b7a9df148f365b47630d09dfe2bb8257b924b2a6535dfc731

  • SHA512

    fe1ab6baee890d66a4bf451a3f2f5c306e83845c9d81c16d0cc705a0644c1f7f73068c0dbd189b6f24c7cabe73e3803223e74f20554dae9777c3da34f7ca7098

  • SSDEEP

    3072:0XSzufLii+CC5j/O1Ey8wCb7lfx4IR7LR/BKtL0K2VAH6rk:wyufLXLAmf+7pxV7LFC0BVAHL

Score
10/10
smokeloaderbackdoortrojan

Malware Config

Targets

    • Target

      ba4e96637214455b7a9df148f365b47630d09dfe2bb8257b924b2a6535dfc731

    • Size

      197KB

    • MD5

      f9576d1cdb7ee25d5a2ceb8e82b963f4

    • SHA1

      0f34f84778607141712851868626dec957da6306

    • SHA256

      ba4e96637214455b7a9df148f365b47630d09dfe2bb8257b924b2a6535dfc731

    • SHA512

      fe1ab6baee890d66a4bf451a3f2f5c306e83845c9d81c16d0cc705a0644c1f7f73068c0dbd189b6f24c7cabe73e3803223e74f20554dae9777c3da34f7ca7098

    • SSDEEP

      3072:0XSzufLii+CC5j/O1Ey8wCb7lfx4IR7LR/BKtL0K2VAH6rk:wyufLXLAmf+7pxV7LFC0BVAHL

    Score
    10/10
    smokeloaderbackdoortrojan

    • Detects Smokeloader packer

    • SmokeLoader

      Modular backdoor trojan in use since 2014.

      trojanbackdoorsmokeloader

    • Executes dropped EXE

    • Deletes itself

    • Suspicious use of SetThreadContext

    behavioral1

MITRE ATT&CK Enterprise v6

Tasks