Overview

overview

10

Static

static

dridex

windows10-1703-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    e785cb1ed3438760c311b66ebe467822838808ea8f6ff07c9a4fcc708b31b74d

  • Size

    218KB

  • Sample

    221026-3m7ersaac4

  • MD5

    ee84a9e9cc6ff7f200a85849c38b9db8

  • SHA1

    56cd517e6e9262269f4187729ac5b00b5e1ea5ef

  • SHA256

    e785cb1ed3438760c311b66ebe467822838808ea8f6ff07c9a4fcc708b31b74d

  • SHA512

    7b811e3e39b98a340b28ae99cc632c3c989b549a718ca1eb2f9a4974f385a7973e546ad39b4f454bbc338de645c0dc53e0759bacc4f597c78a84766ff735f506

  • SSDEEP

    3072:n4xJ/pwy90JAOULLoL43JXdbBtRK67xvf55xfSomA5ZKDkAGEv5/HRiC9J5nrx:4x/79fLJDRKUxvKkidRiC9J5r

Score
10/10
smokeloaderbackdoortrojan

Malware Config

Targets

    • Target

      e785cb1ed3438760c311b66ebe467822838808ea8f6ff07c9a4fcc708b31b74d

    • Size

      218KB

    • MD5

      ee84a9e9cc6ff7f200a85849c38b9db8

    • SHA1

      56cd517e6e9262269f4187729ac5b00b5e1ea5ef

    • SHA256

      e785cb1ed3438760c311b66ebe467822838808ea8f6ff07c9a4fcc708b31b74d

    • SHA512

      7b811e3e39b98a340b28ae99cc632c3c989b549a718ca1eb2f9a4974f385a7973e546ad39b4f454bbc338de645c0dc53e0759bacc4f597c78a84766ff735f506

    • SSDEEP

      3072:n4xJ/pwy90JAOULLoL43JXdbBtRK67xvf55xfSomA5ZKDkAGEv5/HRiC9J5nrx:4x/79fLJDRKUxvKkidRiC9J5r

    Score
    10/10
    smokeloaderbackdoortrojan

    • Detects Smokeloader packer

    • SmokeLoader

      Modular backdoor trojan in use since 2014.

      trojanbackdoorsmokeloader

    • Executes dropped EXE

    • Deletes itself

    • Suspicious use of SetThreadContext

    behavioral1

MITRE ATT&CK Enterprise v6

Tasks