Overview

overview

10

Static

static

dridex

windows10-1703-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    8c1d7ddd8b614e37554c0bd43ba5dffc2f9bfcddc4fd88b0202fb5129a61d800

  • Size

    210KB

  • Sample

    221031-1qmtesdde4

  • MD5

    03b437d144ab7a904ff02cec7565ed9e

  • SHA1

    2100059b6f097bd25059763e0ab22062c5dbc024

  • SHA256

    8c1d7ddd8b614e37554c0bd43ba5dffc2f9bfcddc4fd88b0202fb5129a61d800

  • SHA512

    298aba71dc253ec530fbe6321c40d4d0315033601022456dc8fed6d0bae6ec9bb589234ca11d6f55496a47a9b94aec129ac45b066be03098f744b5978725743c

  • SSDEEP

    3072:9XDoEu6WS+XiXC9LX7w6Vf5GlWWZx0gZ7UvUL13GgirJLgnyx:9XM+WRXiXQLX7wzNx0S3Z0Ngny

Score
10/10
smokeloaderbackdoortrojan

Malware Config

Targets

    • Target

      8c1d7ddd8b614e37554c0bd43ba5dffc2f9bfcddc4fd88b0202fb5129a61d800

    • Size

      210KB

    • MD5

      03b437d144ab7a904ff02cec7565ed9e

    • SHA1

      2100059b6f097bd25059763e0ab22062c5dbc024

    • SHA256

      8c1d7ddd8b614e37554c0bd43ba5dffc2f9bfcddc4fd88b0202fb5129a61d800

    • SHA512

      298aba71dc253ec530fbe6321c40d4d0315033601022456dc8fed6d0bae6ec9bb589234ca11d6f55496a47a9b94aec129ac45b066be03098f744b5978725743c

    • SSDEEP

      3072:9XDoEu6WS+XiXC9LX7w6Vf5GlWWZx0gZ7UvUL13GgirJLgnyx:9XM+WRXiXQLX7wzNx0S3Z0Ngny

    Score
    10/10
    smokeloaderbackdoortrojan

    • Detects Smokeloader packer

    • SmokeLoader

      Modular backdoor trojan in use since 2014.

      trojanbackdoorsmokeloader

    • Deletes itself

    • Suspicious use of SetThreadContext

    behavioral1

MITRE ATT&CK Enterprise v6

Tasks