smokeloader | 57e18a4ccb96d79bc6c267934f87df869ce987b816cd73139d854870ed1118d7 | Triage

Submit
Reports

Overview

overview

Static

static

dridex

windows10-2004-x64

Sharing

General

Target

57e18a4ccb96d79bc6c267934f87df869ce987b816cd73139d854870ed1118d7
Size

305KB
Sample

220908-q9csfsefh9
MD5

760ecf34d0f46130f0d68838ff662bdd
SHA1

e881755c5f220a16db5db09c1f9780b2a62e2c3e
SHA256

57e18a4ccb96d79bc6c267934f87df869ce987b816cd73139d854870ed1118d7
SHA512

d474fae383f5b74231feb5ee2c21122b0dfcb603afc4f71dba90e4f44d3cb03c839244b1134c5d1f925759f3c4ccde1b55887a407cd096108050b374136d6d47
SSDEEP

6144:lMhMDuVuuKTOr6rWLn2D0nq3gYMUbU6vhor3dhUcb:lXDuV2TOu6z2D0nKtb3+Z

Score

10^/10

smokeloader backdoor trojan

Static task

static1

Behavioral task

behavioral1

Sample

57e18a4ccb96d79bc6c267934f87df869ce987b816cd73139d854870ed1118d7.exe

Resource

win10v2004-20220812-en

smokeloader backdoor trojan

windows10-2004-x64

9 signatures

150 seconds

Malware Config

Targets

- Target
  
  57e18a4ccb96d79bc6c267934f87df869ce987b816cd73139d854870ed1118d7
- Size
  
  305KB
- MD5
  
  760ecf34d0f46130f0d68838ff662bdd
- SHA1
  
  e881755c5f220a16db5db09c1f9780b2a62e2c3e
- SHA256
  
  57e18a4ccb96d79bc6c267934f87df869ce987b816cd73139d854870ed1118d7
- SHA512
  
  d474fae383f5b74231feb5ee2c21122b0dfcb603afc4f71dba90e4f44d3cb03c839244b1134c5d1f925759f3c4ccde1b55887a407cd096108050b374136d6d47
- SSDEEP
  
  6144:lMhMDuVuuKTOr6rWLn2D0nq3gYMUbU6vhor3dhUcb:lXDuV2TOu6z2D0nKtb3+Z
Score

10^/10

smokeloader backdoor trojan
- Detects Smokeloader packer
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

smokeloaderbackdoortrojan

© 2018-2024

Terms | Privacy