Overview

overview

10

Static

static

dridex

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    df6cc1348bcb33ac840ca176cec4118691578416acaf7747dc5eedf038820554

  • Size

    144KB

  • Sample

    221128-ea3ztacd74

  • MD5

    c1bc46100086c038cebec30ef062a833

  • SHA1

    8fce0a5fd6414383c768daa4727e60e01bcb00e0

  • SHA256

    df6cc1348bcb33ac840ca176cec4118691578416acaf7747dc5eedf038820554

  • SHA512

    2e7a1920c3d9c3ff815543a0794ace567319a7658ae16d7fb8d759609e1ed33559e93159122cdcf0a2b3eff8256b89d437b9c57d569ea861aaef9d0cceae144b

  • SSDEEP

    3072:aJcYnnXvIM98+5zmd9yvmGkjuPKxng0E2QyfD3G4m:HYnfIM97md9TUyxnggQyfDbm

Score
10/10
smokeloaderbackdoortrojan

Malware Config

Targets

    • Target

      df6cc1348bcb33ac840ca176cec4118691578416acaf7747dc5eedf038820554

    • Size

      144KB

    • MD5

      c1bc46100086c038cebec30ef062a833

    • SHA1

      8fce0a5fd6414383c768daa4727e60e01bcb00e0

    • SHA256

      df6cc1348bcb33ac840ca176cec4118691578416acaf7747dc5eedf038820554

    • SHA512

      2e7a1920c3d9c3ff815543a0794ace567319a7658ae16d7fb8d759609e1ed33559e93159122cdcf0a2b3eff8256b89d437b9c57d569ea861aaef9d0cceae144b

    • SSDEEP

      3072:aJcYnnXvIM98+5zmd9yvmGkjuPKxng0E2QyfD3G4m:HYnfIM97md9TUyxnggQyfDbm

    Score
    10/10
    smokeloaderbackdoortrojan

    • Detects Smokeloader packer

    • SmokeLoader

      Modular backdoor trojan in use since 2014.

      trojanbackdoorsmokeloader

    • Suspicious use of SetThreadContext

    behavioral1

MITRE ATT&CK Enterprise v6

Tasks