Overview

overview

10

Static

static

1

dridex

windows10-1703-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    ec734eb1b4d74abfed6d5328fb980e24f78fffd39d19a21d2d008b802d2c41c5

  • Size

    298KB

  • Sample

    230207-c8aptahb39

  • MD5

    1b2a209423923c8095ed6c9b234bdb08

  • SHA1

    39a042adbe2101f24cd59dc5b734b709851ae0fe

  • SHA256

    ec734eb1b4d74abfed6d5328fb980e24f78fffd39d19a21d2d008b802d2c41c5

  • SHA512

    34d2ec1aebd0af0314c6bed8043b35071628552a5b8a0335d74a99dbd87772a0fda4a8515e3705b0c9f396b4c15237ae268c48d3ec6776e53c132867d5a705ed

  • SSDEEP

    3072:elb6bBJLCaRmqps2VGUJISjvcAlpE/dohTGuQjiMTE52vVa5H:4KJLCZms2Xv3jElo5GuQj91a

Score
10/10
smokeloaderbackdoortrojan

Malware Config

Targets

    • Target

      ec734eb1b4d74abfed6d5328fb980e24f78fffd39d19a21d2d008b802d2c41c5

    • Size

      298KB

    • MD5

      1b2a209423923c8095ed6c9b234bdb08

    • SHA1

      39a042adbe2101f24cd59dc5b734b709851ae0fe

    • SHA256

      ec734eb1b4d74abfed6d5328fb980e24f78fffd39d19a21d2d008b802d2c41c5

    • SHA512

      34d2ec1aebd0af0314c6bed8043b35071628552a5b8a0335d74a99dbd87772a0fda4a8515e3705b0c9f396b4c15237ae268c48d3ec6776e53c132867d5a705ed

    • SSDEEP

      3072:elb6bBJLCaRmqps2VGUJISjvcAlpE/dohTGuQjiMTE52vVa5H:4KJLCZms2Xv3jElo5GuQj91a

    Score
    10/10
    smokeloaderbackdoortrojan

    • Detects Smokeloader packer

    • SmokeLoader

      Modular backdoor trojan in use since 2014.

      trojanbackdoorsmokeloader

    • Deletes itself

    • Suspicious use of SetThreadContext

    behavioral1

MITRE ATT&CK Enterprise v6

Tasks