Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

1

dridex

windows10-1703-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    b74d3c2f0d2c772619704f13fd1839671ae5e0b4732064018e65e98562c46a06

  • Size

    192KB

  • Sample

    230204-sdwxkagh8x

  • MD5

    f2260a03b3348ceb46b7ec6151e421c0

  • SHA1

    c816c3f3ac176ca73fdf14186f47c425b9254431

  • SHA256

    b74d3c2f0d2c772619704f13fd1839671ae5e0b4732064018e65e98562c46a06

  • SHA512

    0168a996a191ab75e67fcf901576ff6caa22ae0db684d67fa870c58d3e761a2dd4bf765b5d7479264d700fec4d3e76ebac609fca07fc7ca7485b4494e5c6b736

  • SSDEEP

    3072:sIZs05Tv8ALdrOuuOWo5olX5vY8JlZJLGR7Bh+c1nCIqlxOf/RsH+Iz11dSM:sIZd3LdKpO8l1JLJLK7Pn3Xc+Iz1

Score
10/10
smokeloaderbackdoortrojan

Malware Config

Targets

    • Target

      b74d3c2f0d2c772619704f13fd1839671ae5e0b4732064018e65e98562c46a06

    • Size

      192KB

    • MD5

      f2260a03b3348ceb46b7ec6151e421c0

    • SHA1

      c816c3f3ac176ca73fdf14186f47c425b9254431

    • SHA256

      b74d3c2f0d2c772619704f13fd1839671ae5e0b4732064018e65e98562c46a06

    • SHA512

      0168a996a191ab75e67fcf901576ff6caa22ae0db684d67fa870c58d3e761a2dd4bf765b5d7479264d700fec4d3e76ebac609fca07fc7ca7485b4494e5c6b736

    • SSDEEP

      3072:sIZs05Tv8ALdrOuuOWo5olX5vY8JlZJLGR7Bh+c1nCIqlxOf/RsH+Iz11dSM:sIZd3LdKpO8l1JLJLK7Pn3Xc+Iz1

    Score
    10/10
    smokeloaderbackdoortrojan

    • Detects Smokeloader packer

    • SmokeLoader

      Modular backdoor trojan in use since 2014.

      trojanbackdoorsmokeloader

    • Deletes itself

    • Suspicious use of SetThreadContext

    behavioral1

MITRE ATT&CK Enterprise v6

Tasks