smokeloader | d2373be5062b13474f20bfde76ec2066480254ac28611bf4745ae0baa76dfdf1 | Triage

Submit
Reports

Overview

overview

Static

static

dridex

windows10-1703-x64

Sharing

General

Target

d2373be5062b13474f20bfde76ec2066480254ac28611bf4745ae0baa76dfdf1
Size

301KB
Sample

220916-q3vppabfdp
MD5

9c63eb402b40d9df82920de517a1dbf5
SHA1

49a120eb17407e4b5763131c252d26b86bd4ce0b
SHA256

d2373be5062b13474f20bfde76ec2066480254ac28611bf4745ae0baa76dfdf1
SHA512

e03b301c17660b45c0b9c2d624b168595239ede08d9d07e9945eb0306bfd6e847e57e79ea64c92db39f2b2c8d2905c59b4d3f1b5d7e1b21fd5fd22679d508e68
SSDEEP

3072:DVXokmOz7e9eXw2CzRTaCMbGTqixD+GjjE0K8jqGnH8FXM/h3BsxkgaBChU/pZaN:Nosjgdek+GjjE0Tp8FXnigabwVf

Score

10^/10

smokeloader backdoor trojan

Static task

static1

Behavioral task

behavioral1

Sample

d2373be5062b13474f20bfde76ec2066480254ac28611bf4745ae0baa76dfdf1.exe

Resource

win10-20220901-en

smokeloader backdoor trojan

windows10-1703-x64

11 signatures

150 seconds

Malware Config

Targets

- Target
  
  d2373be5062b13474f20bfde76ec2066480254ac28611bf4745ae0baa76dfdf1
- Size
  
  301KB
- MD5
  
  9c63eb402b40d9df82920de517a1dbf5
- SHA1
  
  49a120eb17407e4b5763131c252d26b86bd4ce0b
- SHA256
  
  d2373be5062b13474f20bfde76ec2066480254ac28611bf4745ae0baa76dfdf1
- SHA512
  
  e03b301c17660b45c0b9c2d624b168595239ede08d9d07e9945eb0306bfd6e847e57e79ea64c92db39f2b2c8d2905c59b4d3f1b5d7e1b21fd5fd22679d508e68
- SSDEEP
  
  3072:DVXokmOz7e9eXw2CzRTaCMbGTqixD+GjjE0K8jqGnH8FXM/h3BsxkgaBChU/pZaN:Nosjgdek+GjjE0Tp8FXnigabwVf
Score

10^/10

smokeloader backdoor trojan
- Detects Smokeloader packer
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
- Executes dropped EXE
- Deletes itself
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

smokeloaderbackdoortrojan

© 2018-2024

Terms | Privacy