Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

dridex

windows10-1703-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    89bcb07c45d0d1e2fb205d8fb09f7418eb61a8c34de574b27954b649f3ced2cb

  • Size

    260KB

  • Sample

    230108-3ypn4afb24

  • MD5

    978e4cd65da4efbcd21df4b0179fc0be

  • SHA1

    fd556796b6d362a05709b9843943874acd3ace03

  • SHA256

    89bcb07c45d0d1e2fb205d8fb09f7418eb61a8c34de574b27954b649f3ced2cb

  • SHA512

    97797f8d46fb404c359789aedc0a8324d39f3afb64ea3d95bd26f25069292dc453987afe96c4d489fc0798b4d752139a8f4f03ae94989aa949db353c271ba611

  • SSDEEP

    3072:urXEK+F8LrBIRE7lDAD15sZCoJjYEN+JCiLnjIAUCrn99hZCRRzMuWZgd3n:WTLORE7lDAloJjPNmfLnj6Crpcqgd3

Score
10/10
smokeloaderbackdoortrojan

Malware Config

Targets

    • Target

      89bcb07c45d0d1e2fb205d8fb09f7418eb61a8c34de574b27954b649f3ced2cb

    • Size

      260KB

    • MD5

      978e4cd65da4efbcd21df4b0179fc0be

    • SHA1

      fd556796b6d362a05709b9843943874acd3ace03

    • SHA256

      89bcb07c45d0d1e2fb205d8fb09f7418eb61a8c34de574b27954b649f3ced2cb

    • SHA512

      97797f8d46fb404c359789aedc0a8324d39f3afb64ea3d95bd26f25069292dc453987afe96c4d489fc0798b4d752139a8f4f03ae94989aa949db353c271ba611

    • SSDEEP

      3072:urXEK+F8LrBIRE7lDAD15sZCoJjYEN+JCiLnjIAUCrn99hZCRRzMuWZgd3n:WTLORE7lDAloJjPNmfLnj6Crpcqgd3

    Score
    10/10
    smokeloaderbackdoortrojan

    • Detects Smokeloader packer

    • SmokeLoader

      Modular backdoor trojan in use since 2014.

      trojanbackdoorsmokeloader

    • Deletes itself

    • Suspicious use of SetThreadContext

    behavioral1

MITRE ATT&CK Enterprise v6

Tasks