Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

1

dridex

windows10-1703-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    3a7e2c38496116c8ae8bb719405111b77e7dfdf7399d8550b4dec522a601fac2

  • Size

    192KB

  • Sample

    230203-qlcgsafe39

  • MD5

    56bdc23d86e6770e67c505f36951f86d

  • SHA1

    c66da8b54d71e667b486d1d48d3a52600f1d8a56

  • SHA256

    3a7e2c38496116c8ae8bb719405111b77e7dfdf7399d8550b4dec522a601fac2

  • SHA512

    19dbba701f7b3f6dd14de5d4fe98989903a2ed7e813cc5542cd460e628aa9fe0bab5ea644787c23d7fc2eff80e35df21f07a7ee56d39dc04e45a737c1c44be26

  • SSDEEP

    3072:6WLPGXwMqLoGg/AsWle5Tt4D2kokJljvZ3TwTtRkTwVty7B+9Ym:6W0qL7gYsJE2knGTtOTI6BcYm

Score
10/10
smokeloaderbackdoortrojan

Malware Config

Targets

    • Target

      3a7e2c38496116c8ae8bb719405111b77e7dfdf7399d8550b4dec522a601fac2

    • Size

      192KB

    • MD5

      56bdc23d86e6770e67c505f36951f86d

    • SHA1

      c66da8b54d71e667b486d1d48d3a52600f1d8a56

    • SHA256

      3a7e2c38496116c8ae8bb719405111b77e7dfdf7399d8550b4dec522a601fac2

    • SHA512

      19dbba701f7b3f6dd14de5d4fe98989903a2ed7e813cc5542cd460e628aa9fe0bab5ea644787c23d7fc2eff80e35df21f07a7ee56d39dc04e45a737c1c44be26

    • SSDEEP

      3072:6WLPGXwMqLoGg/AsWle5Tt4D2kokJljvZ3TwTtRkTwVty7B+9Ym:6W0qL7gYsJE2knGTtOTI6BcYm

    Score
    10/10
    smokeloaderbackdoortrojan

    • Detects Smokeloader packer

    • SmokeLoader

      Modular backdoor trojan in use since 2014.

      trojanbackdoorsmokeloader

    • Deletes itself

    • Suspicious use of SetThreadContext

    behavioral1

MITRE ATT&CK Enterprise v6

Tasks