Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

dridex

windows10-1703-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    5bde7fe5371b486bead101156b24e9a0c9a0b2d0b88f22a65f79d2776214636f

  • Size

    324KB

  • Sample

    221102-2krqvscde2

  • MD5

    f290aec2c7924d760f140af9f86d386f

  • SHA1

    8bee9fdddc29c3dc46f18cf3b80bee41e340de1a

  • SHA256

    5bde7fe5371b486bead101156b24e9a0c9a0b2d0b88f22a65f79d2776214636f

  • SHA512

    c87225bdd856cff1444701047d8ff44b1289236484c95a1fa3a77680f58ee959750d7cc59c9ada2a7ac5503ce8891bc27ec53935101d9b447eb8e2537cdba617

  • SSDEEP

    3072:mt/IlLX3/EkiS56D+RyB1XNh1ZzVT7K5ejLVz1LZRiU/VggjcGkNIVqILr:C/KLX8PPbXzDVXK5cLV/t97ITsq

Score
10/10
smokeloaderbackdoortrojan

Malware Config

Targets

    • Target

      5bde7fe5371b486bead101156b24e9a0c9a0b2d0b88f22a65f79d2776214636f

    • Size

      324KB

    • MD5

      f290aec2c7924d760f140af9f86d386f

    • SHA1

      8bee9fdddc29c3dc46f18cf3b80bee41e340de1a

    • SHA256

      5bde7fe5371b486bead101156b24e9a0c9a0b2d0b88f22a65f79d2776214636f

    • SHA512

      c87225bdd856cff1444701047d8ff44b1289236484c95a1fa3a77680f58ee959750d7cc59c9ada2a7ac5503ce8891bc27ec53935101d9b447eb8e2537cdba617

    • SSDEEP

      3072:mt/IlLX3/EkiS56D+RyB1XNh1ZzVT7K5ejLVz1LZRiU/VggjcGkNIVqILr:C/KLX8PPbXzDVXK5cLV/t97ITsq

    Score
    10/10
    smokeloaderbackdoortrojan

    • Detects Smokeloader packer

    • SmokeLoader

      Modular backdoor trojan in use since 2014.

      trojanbackdoorsmokeloader

    • Executes dropped EXE

    • Deletes itself

    • Suspicious use of SetThreadContext

    behavioral1

MITRE ATT&CK Enterprise v6

Tasks