smokeloader | b42e89679216a5bdcdcc38a37a612092988246928e9d22f055d040b6614944dd | Triage

Submit
Reports

Overview

overview

Static

static

dridex

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

Target

b42e89679216a5bdcdcc38a37a612092988246928e9d22f055d040b6614944dd
Size

288KB
Sample

220911-w1rg5scae2
MD5

844e626a3c2749843437f3b1ec371bcf
SHA1

947afc2ab7159cdaded42e3ba20d7a0b170c609e
SHA256

b42e89679216a5bdcdcc38a37a612092988246928e9d22f055d040b6614944dd
SHA512

faaf6c139eea708ac602f4fd46cb45cedae40e84391967dc481137ff85c318a9798d50ff15145904a10959b572562ba541e02c8c094975f27474ba6ca6f598c9
SSDEEP

6144:oqWNTqz4O0bzvHsD9IBcwi3W8qLNYacZy2POBaKij4E2jUV:oXTiiWqBcwi3W8qLNwZy2PO0kEQU

Score

10^/10

smokeloader backdoor trojan

Static task

static1

Behavioral task

behavioral1

Sample

b42e89679216a5bdcdcc38a37a612092988246928e9d22f055d040b6614944dd.exe

Resource

win10v2004-20220812-en

smokeloader backdoor trojan

windows10-2004-x64

7 signatures

150 seconds

Malware Config

Targets

- Target
  
  b42e89679216a5bdcdcc38a37a612092988246928e9d22f055d040b6614944dd
- Size
  
  288KB
- MD5
  
  844e626a3c2749843437f3b1ec371bcf
- SHA1
  
  947afc2ab7159cdaded42e3ba20d7a0b170c609e
- SHA256
  
  b42e89679216a5bdcdcc38a37a612092988246928e9d22f055d040b6614944dd
- SHA512
  
  faaf6c139eea708ac602f4fd46cb45cedae40e84391967dc481137ff85c318a9798d50ff15145904a10959b572562ba541e02c8c094975f27474ba6ca6f598c9
- SSDEEP
  
  6144:oqWNTqz4O0bzvHsD9IBcwi3W8qLNYacZy2POBaKij4E2jUV:oXTiiWqBcwi3W8qLNwZy2PO0kEQU
Score

10^/10

smokeloader backdoor trojan
- Detects Smokeloader packer
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

smokeloaderbackdoortrojan

© 2018-2025

Terms | Privacy