Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

dridex

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    a13832486341f565c88eac3e00ac858e0855bbe880748d62ff8036d494017d13

  • Size

    214KB

  • Sample

    221216-sagy8seh67

  • MD5

    04fe5ef212e085abf2cc3fc5a25d83c2

  • SHA1

    18e2905c972f0370845bfce68b1928c27438c124

  • SHA256

    a13832486341f565c88eac3e00ac858e0855bbe880748d62ff8036d494017d13

  • SHA512

    86d6ce720c60f474b4ababcca8ebec64f6e2ffaa14ac5f7722ae7b742facc4e27aa1175718713802fa7966ea54a448317c41c95f94a62033b61bebb8b9579460

  • SSDEEP

    3072:ggZBV5LqYuwSR5qQEiqpvGeRQl/i47I8RsLszhGBt940zwUzQRKF+:rfrLRuhqYujeH7I8RsgzhGBt940M2b

Score
10/10
smokeloaderbackdoortrojan

Malware Config

Targets

    • Target

      a13832486341f565c88eac3e00ac858e0855bbe880748d62ff8036d494017d13

    • Size

      214KB

    • MD5

      04fe5ef212e085abf2cc3fc5a25d83c2

    • SHA1

      18e2905c972f0370845bfce68b1928c27438c124

    • SHA256

      a13832486341f565c88eac3e00ac858e0855bbe880748d62ff8036d494017d13

    • SHA512

      86d6ce720c60f474b4ababcca8ebec64f6e2ffaa14ac5f7722ae7b742facc4e27aa1175718713802fa7966ea54a448317c41c95f94a62033b61bebb8b9579460

    • SSDEEP

      3072:ggZBV5LqYuwSR5qQEiqpvGeRQl/i47I8RsLszhGBt940zwUzQRKF+:rfrLRuhqYujeH7I8RsgzhGBt940M2b

    Score
    10/10
    smokeloaderbackdoortrojan

    • Detects Smokeloader packer

    • SmokeLoader

      Modular backdoor trojan in use since 2014.

      trojanbackdoorsmokeloader

    • Downloads MZ/PE file

    • Executes dropped EXE

    • Suspicious use of NtSetInformationThreadHideFromDebugger

    behavioral1

MITRE ATT&CK Enterprise v6

Tasks