smokeloader | d493979638fb3983445d462e2cb60a509207055b8128c14e6df1ec8c7db59bb8 | Triage

Submit
Reports

Overview

overview

Static

static

dridex

windows10-2004-x64

Sharing

General

Target

d493979638fb3983445d462e2cb60a509207055b8128c14e6df1ec8c7db59bb8
Size

280KB
Sample

220916-eq544sefc3
MD5

5409d98f2e1ec335c116878c280d2ba5
SHA1

1604d9e22901eb35f8390e305cbb970c8fe614f8
SHA256

d493979638fb3983445d462e2cb60a509207055b8128c14e6df1ec8c7db59bb8
SHA512

9e3bb1f79e75257371c13954906fbd0aa158b0d28055f3d5ea5c2bf6f6a5e2b73044cc47b83dd583d7dbc0676ea258b788b7b95fd748867f9d03f6353efa8fc9
SSDEEP

3072:Q7CyKcuyyZGpfS0xkvYmv/AL0z1ke1lfYBNpvfWU345nSBM53pMPBrWaO9dBBNx:Z0fzxkvYmv8HGfYNZOc6nSBjBrWX9h

Score

10^/10

smokeloader backdoor trojan

Static task

static1

Behavioral task

behavioral1

Sample

d493979638fb3983445d462e2cb60a509207055b8128c14e6df1ec8c7db59bb8.exe

Resource

win10v2004-20220901-en

smokeloader backdoor trojan

windows10-2004-x64

10 signatures

150 seconds

Malware Config

Targets

- Target
  
  d493979638fb3983445d462e2cb60a509207055b8128c14e6df1ec8c7db59bb8
- Size
  
  280KB
- MD5
  
  5409d98f2e1ec335c116878c280d2ba5
- SHA1
  
  1604d9e22901eb35f8390e305cbb970c8fe614f8
- SHA256
  
  d493979638fb3983445d462e2cb60a509207055b8128c14e6df1ec8c7db59bb8
- SHA512
  
  9e3bb1f79e75257371c13954906fbd0aa158b0d28055f3d5ea5c2bf6f6a5e2b73044cc47b83dd583d7dbc0676ea258b788b7b95fd748867f9d03f6353efa8fc9
- SSDEEP
  
  3072:Q7CyKcuyyZGpfS0xkvYmv/AL0z1ke1lfYBNpvfWU345nSBM53pMPBrWaO9dBBNx:Z0fzxkvYmv8HGfYNZOc6nSBjBrWX9h
Score

10^/10

smokeloader backdoor trojan
- Detects Smokeloader packer
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

smokeloaderbackdoortrojan

© 2018-2025

Terms | Privacy