Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

1

dridex

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    576bac0735d3bd499705c86cffc66b24d76342e34867174fe608f3048ba4fdd0

  • Size

    183KB

  • Sample

    230213-2hnanagb7x

  • MD5

    53661d56d99c7e1a8ae0c86bdf8eb78c

  • SHA1

    1e4952466cb30248d711692e65901ba9acfa3c0b

  • SHA256

    576bac0735d3bd499705c86cffc66b24d76342e34867174fe608f3048ba4fdd0

  • SHA512

    920f4ac6f8d4f9b5ad939f8a77e5fbe2bcfc1a226c1d05235eee4f1c9e2f3a93516d09a1068d46355525b44e87eb48533eb82142d42f4f6aeacc922ee591fe94

  • SSDEEP

    3072:yKrcvVIirtxks71krnyDgtHzMbtQvF/gFJhbRvzZcp:y+cNDpxkspyysTMbevFIFbRr

Score
10/10
smokeloaderbackdoortrojan

Malware Config

Targets

    • Target

      576bac0735d3bd499705c86cffc66b24d76342e34867174fe608f3048ba4fdd0

    • Size

      183KB

    • MD5

      53661d56d99c7e1a8ae0c86bdf8eb78c

    • SHA1

      1e4952466cb30248d711692e65901ba9acfa3c0b

    • SHA256

      576bac0735d3bd499705c86cffc66b24d76342e34867174fe608f3048ba4fdd0

    • SHA512

      920f4ac6f8d4f9b5ad939f8a77e5fbe2bcfc1a226c1d05235eee4f1c9e2f3a93516d09a1068d46355525b44e87eb48533eb82142d42f4f6aeacc922ee591fe94

    • SSDEEP

      3072:yKrcvVIirtxks71krnyDgtHzMbtQvF/gFJhbRvzZcp:y+cNDpxkspyysTMbevFIFbRr

    Score
    10/10
    smokeloaderbackdoortrojan

    • Detects Smokeloader packer

    • SmokeLoader

      Modular backdoor trojan in use since 2014.

      trojanbackdoorsmokeloader

    • Blocklisted process makes network request

    • Downloads MZ/PE file

    • Executes dropped EXE

    • Loads dropped DLL

    • Suspicious use of SetThreadContext

    behavioral1

MITRE ATT&CK Enterprise v6

Tasks