Overview

overview

10

Static

static

dridex

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    d58140dbac14886aa8e56b69c7cb7996d2d17212ea555cdb12c49afd0ebeb7ee

  • Size

    192KB

  • Sample

    230130-nlpq1aab69

  • MD5

    f7aedb44d0ed433de9d0e3e962fad339

  • SHA1

    ad92fbd791f291a56d490c6caf4f4f8d8b70c9dc

  • SHA256

    d58140dbac14886aa8e56b69c7cb7996d2d17212ea555cdb12c49afd0ebeb7ee

  • SHA512

    491c182f1eca87eb3bd31b5fd45fb86cdfb06ddc02dd1c42c730a4154649aa1f3826cc6b445ce89396b39f0f94182033970521e782a8a3683f1aca81aacbb980

  • SSDEEP

    3072:tBNFM8YL++ZSHm5kaNXiGdcRBzEkXxPg0SbweHicm6p4r:zULnSH7aNy9RB560SxNmO8

Score
10/10
smokeloaderbackdoortrojan

Malware Config

Targets

    • Target

      d58140dbac14886aa8e56b69c7cb7996d2d17212ea555cdb12c49afd0ebeb7ee

    • Size

      192KB

    • MD5

      f7aedb44d0ed433de9d0e3e962fad339

    • SHA1

      ad92fbd791f291a56d490c6caf4f4f8d8b70c9dc

    • SHA256

      d58140dbac14886aa8e56b69c7cb7996d2d17212ea555cdb12c49afd0ebeb7ee

    • SHA512

      491c182f1eca87eb3bd31b5fd45fb86cdfb06ddc02dd1c42c730a4154649aa1f3826cc6b445ce89396b39f0f94182033970521e782a8a3683f1aca81aacbb980

    • SSDEEP

      3072:tBNFM8YL++ZSHm5kaNXiGdcRBzEkXxPg0SbweHicm6p4r:zULnSH7aNy9RB560SxNmO8

    Score
    10/10
    smokeloaderbackdoortrojan

    • Detects Smokeloader packer

    • SmokeLoader

      Modular backdoor trojan in use since 2014.

      trojanbackdoorsmokeloader

    • Executes dropped EXE

    • Suspicious use of SetThreadContext

    behavioral1

MITRE ATT&CK Enterprise v6

Tasks