smokeloader | 9adfa5f4ae1762c7c94856e5d10c110a7cf3c0c7dbc7bf47a29114dcb2d84229 | Triage

Submit
Reports

Overview

overview

Static

static

dridex

windows10-1703-x64

Sharing

Copy URL Twitter E-mail

General

Target

9adfa5f4ae1762c7c94856e5d10c110a7cf3c0c7dbc7bf47a29114dcb2d84229
Size

266KB
Sample

220916-m6jvtabccq
MD5

5a84f1870c428a4366b55f37d1b60e47
SHA1

657f70e199729ea266aeb8927f1d1bf6e4ecc391
SHA256

9adfa5f4ae1762c7c94856e5d10c110a7cf3c0c7dbc7bf47a29114dcb2d84229
SHA512

597211d8f4562bd36f024daaf6a8ddb71fd2f32e1cf5dd2f7e9f42a974c00956b22b434e038536b34ae0a17eeefb3c30521c9e42a5fd3f1f684a5ff147152a11
SSDEEP

6144:v8CZGjRL4Db18QtAl8cQd00REnBW3nigaH6:v1ZGjRLAbnAfyK4iP6

Score

10^/10

smokeloader backdoor trojan

Static task

static1

Behavioral task

behavioral1

Sample

9adfa5f4ae1762c7c94856e5d10c110a7cf3c0c7dbc7bf47a29114dcb2d84229.exe

Resource

win10-20220901-en

smokeloader backdoor trojan

windows10-1703-x64

10 signatures

150 seconds

Malware Config

Targets

- Target
  
  9adfa5f4ae1762c7c94856e5d10c110a7cf3c0c7dbc7bf47a29114dcb2d84229
- Size
  
  266KB
- MD5
  
  5a84f1870c428a4366b55f37d1b60e47
- SHA1
  
  657f70e199729ea266aeb8927f1d1bf6e4ecc391
- SHA256
  
  9adfa5f4ae1762c7c94856e5d10c110a7cf3c0c7dbc7bf47a29114dcb2d84229
- SHA512
  
  597211d8f4562bd36f024daaf6a8ddb71fd2f32e1cf5dd2f7e9f42a974c00956b22b434e038536b34ae0a17eeefb3c30521c9e42a5fd3f1f684a5ff147152a11
- SSDEEP
  
  6144:v8CZGjRL4Db18QtAl8cQd00REnBW3nigaH6:v1ZGjRLAbnAfyK4iP6
Score

10^/10

smokeloader backdoor trojan
- Detects Smokeloader packer
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
- Deletes itself
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

smokeloaderbackdoortrojan

© 2018-2025

Terms | Privacy