smokeloader | caa1a2c1bf5385a066072550a1aecabf122cbaae9f65d1c26d391c4920223a72 | Triage

Submit
Reports

Overview

overview

Static

static

dridex

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

Target

caa1a2c1bf5385a066072550a1aecabf122cbaae9f65d1c26d391c4920223a72
Size

206KB
Sample

220909-dlzwvsgdb3
MD5

6d30b8d44c2f630faecc287c95537688
SHA1

0bd300c7f04a775ac1e7dfaad6c9b587a69cdf23
SHA256

caa1a2c1bf5385a066072550a1aecabf122cbaae9f65d1c26d391c4920223a72
SHA512

eb2f4a6b1ab2966c4bcc3ecea1079b34a3f8d0a120bba906b135e2a92661520d3a02f26b49839c1816304f87a6cac633d1ce83b8bdb155cef564c6bffb0b1d03
SSDEEP

3072:8EovWXCVU530uvBJcrMhU+6tRt1NQ0fBFc4hFDZ2O66p:kAv5ku9pCRzZfBKa2Of

Score

10^/10

smokeloader backdoor trojan

Static task

static1

Behavioral task

behavioral1

Sample

caa1a2c1bf5385a066072550a1aecabf122cbaae9f65d1c26d391c4920223a72.exe

Resource

win10v2004-20220812-en

smokeloader backdoor trojan

windows10-2004-x64

8 signatures

150 seconds

Malware Config

Targets

- Target
  
  caa1a2c1bf5385a066072550a1aecabf122cbaae9f65d1c26d391c4920223a72
- Size
  
  206KB
- MD5
  
  6d30b8d44c2f630faecc287c95537688
- SHA1
  
  0bd300c7f04a775ac1e7dfaad6c9b587a69cdf23
- SHA256
  
  caa1a2c1bf5385a066072550a1aecabf122cbaae9f65d1c26d391c4920223a72
- SHA512
  
  eb2f4a6b1ab2966c4bcc3ecea1079b34a3f8d0a120bba906b135e2a92661520d3a02f26b49839c1816304f87a6cac633d1ce83b8bdb155cef564c6bffb0b1d03
- SSDEEP
  
  3072:8EovWXCVU530uvBJcrMhU+6tRt1NQ0fBFc4hFDZ2O66p:kAv5ku9pCRzZfBKa2Of
Score

10^/10

smokeloader backdoor trojan
- Detects Smokeloader packer
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

smokeloaderbackdoortrojan

© 2018-2025

Terms | Privacy