smokeloader | 0ceb9844896f62db9fbdfa5c2d4b849923b7af1584ade1d715c0283406a95ded | Triage

Submit
Reports

Overview

overview

Static

static

dridex

windows10-1703-x64

Sharing

Copy URL Twitter E-mail

General

Target

0ceb9844896f62db9fbdfa5c2d4b849923b7af1584ade1d715c0283406a95ded
Size

300KB
Sample

220917-f2shtsdbaq
MD5

4c3bfdf0f059281d2b0917eceb44f86f
SHA1

d1a487faf981faedb44a48fa8d235edcafa95f35
SHA256

0ceb9844896f62db9fbdfa5c2d4b849923b7af1584ade1d715c0283406a95ded
SHA512

3e7190e52cdfef43782b6086ec6c05db0837b57562b09130ae834fcae9df8ed4b0a86afcf5b885929863a85b1b8717e3220f1eb0c9a22bca3388508beac00280
SSDEEP

3072:4FXMqtFpm9cVL+VUAeNI9RNLXoQ1cRgiNgYd09ss0KURFawxM/h3BsxkgaBChU/O:8MqjLdA5sQEhd0ys0BPawxnigabwVf

Score

10^/10

smokeloader backdoor trojan

Static task

static1

Behavioral task

behavioral1

Sample

0ceb9844896f62db9fbdfa5c2d4b849923b7af1584ade1d715c0283406a95ded.exe

Resource

win10-20220812-en

smokeloader backdoor trojan

windows10-1703-x64

9 signatures

150 seconds

Malware Config

Targets

- Target
  
  0ceb9844896f62db9fbdfa5c2d4b849923b7af1584ade1d715c0283406a95ded
- Size
  
  300KB
- MD5
  
  4c3bfdf0f059281d2b0917eceb44f86f
- SHA1
  
  d1a487faf981faedb44a48fa8d235edcafa95f35
- SHA256
  
  0ceb9844896f62db9fbdfa5c2d4b849923b7af1584ade1d715c0283406a95ded
- SHA512
  
  3e7190e52cdfef43782b6086ec6c05db0837b57562b09130ae834fcae9df8ed4b0a86afcf5b885929863a85b1b8717e3220f1eb0c9a22bca3388508beac00280
- SSDEEP
  
  3072:4FXMqtFpm9cVL+VUAeNI9RNLXoQ1cRgiNgYd09ss0KURFawxM/h3BsxkgaBChU/O:8MqjLdA5sQEhd0ys0BPawxnigabwVf
Score

10^/10

smokeloader backdoor trojan
- Detects Smokeloader packer
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
- Deletes itself
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

smokeloaderbackdoortrojan

© 2018-2025

Terms | Privacy