smokeloader | afa2bb3cff9920dcb6b0d92834637fba5f83d18b5dd3d1e671e27c0906ef30fb | Triage

Submit
Reports

Overview

overview

Static

static

dridex

windows10-1703-x64

Sharing

General

Target

afa2bb3cff9920dcb6b0d92834637fba5f83d18b5dd3d1e671e27c0906ef30fb
Size

174KB
Sample

220921-s9yq2agfb3
MD5

c5eba2cf0f3c49b21c9bac7235dfc6ed
SHA1

5c241e9c8fbd9947b844213e0d9104ac80f18f51
SHA256

afa2bb3cff9920dcb6b0d92834637fba5f83d18b5dd3d1e671e27c0906ef30fb
SHA512

2022b7a3f830c4acac2eca45d8200534a7570529dc59edfaff55314582b3742ad53d6f6fea4f5f276ce936aabfbc880c37c1998cbdfe115941feda43c03896d7
SSDEEP

3072:jsOENJ5YAj+EBvEcSjZNpJPIfBW8wgi8jHiM/Pk8In:L0EYuNPHh8zi

Score

10^/10

smokeloader backdoor trojan

Static task

static1

Behavioral task

behavioral1

Sample

afa2bb3cff9920dcb6b0d92834637fba5f83d18b5dd3d1e671e27c0906ef30fb.exe

Resource

win10-20220812-en

smokeloader backdoor trojan

windows10-1703-x64

12 signatures

150 seconds

Malware Config

Targets

- Target
  
  afa2bb3cff9920dcb6b0d92834637fba5f83d18b5dd3d1e671e27c0906ef30fb
- Size
  
  174KB
- MD5
  
  c5eba2cf0f3c49b21c9bac7235dfc6ed
- SHA1
  
  5c241e9c8fbd9947b844213e0d9104ac80f18f51
- SHA256
  
  afa2bb3cff9920dcb6b0d92834637fba5f83d18b5dd3d1e671e27c0906ef30fb
- SHA512
  
  2022b7a3f830c4acac2eca45d8200534a7570529dc59edfaff55314582b3742ad53d6f6fea4f5f276ce936aabfbc880c37c1998cbdfe115941feda43c03896d7
- SSDEEP
  
  3072:jsOENJ5YAj+EBvEcSjZNpJPIfBW8wgi8jHiM/Pk8In:L0EYuNPHh8zi
Score

10^/10

smokeloader backdoor trojan
- Detects Smokeloader packer
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
- Downloads MZ/PE file
- Executes dropped EXE
- Deletes itself
- Drops startup file
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

smokeloaderbackdoortrojan

© 2018-2025

Terms | Privacy