smokeloader | 065191ac5c890ae6861fd4507cf0048ad17607e4ea56affc130942d128f91a62 | Triage

Submit
Reports

Overview

overview

Static

static

dridex

windows10-1703-x64

Sharing

Copy URL Twitter E-mail

General

Target

065191ac5c890ae6861fd4507cf0048ad17607e4ea56affc130942d128f91a62
Size

199KB
Sample

220923-2mf25sabb5
MD5

a1bc6065d9e5775b32303535cf4d9e1c
SHA1

4a16d1ba12f3ce00fb411e48c4d250e9bbb9ae79
SHA256

065191ac5c890ae6861fd4507cf0048ad17607e4ea56affc130942d128f91a62
SHA512

2501b50e92d7f8f10539cc3933d8521cadc84007246edcef49360df85285ddf98791221e7881960d0dc91b4394c3df20bfd8b2f3bfc658b44145aa6288e6b94e
SSDEEP

3072:ywbZHdWGsLgveXr85AP2oNX6eol86RmNzXxvQ4xE6gBVgNhMPl/PkN4x:yEjwLBX5+86RmNDxYrEMP

Score

10^/10

smokeloader backdoor trojan

Static task

static1

Behavioral task

behavioral1

Sample

065191ac5c890ae6861fd4507cf0048ad17607e4ea56affc130942d128f91a62.exe

Resource

win10-20220901-en

smokeloader backdoor trojan

windows10-1703-x64

9 signatures

150 seconds

Malware Config

Targets

- Target
  
  065191ac5c890ae6861fd4507cf0048ad17607e4ea56affc130942d128f91a62
- Size
  
  199KB
- MD5
  
  a1bc6065d9e5775b32303535cf4d9e1c
- SHA1
  
  4a16d1ba12f3ce00fb411e48c4d250e9bbb9ae79
- SHA256
  
  065191ac5c890ae6861fd4507cf0048ad17607e4ea56affc130942d128f91a62
- SHA512
  
  2501b50e92d7f8f10539cc3933d8521cadc84007246edcef49360df85285ddf98791221e7881960d0dc91b4394c3df20bfd8b2f3bfc658b44145aa6288e6b94e
- SSDEEP
  
  3072:ywbZHdWGsLgveXr85AP2oNX6eol86RmNzXxvQ4xE6gBVgNhMPl/PkN4x:yEjwLBX5+86RmNDxYrEMP
Score

10^/10

smokeloader backdoor trojan
- Detects Smokeloader packer
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
- Deletes itself
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

smokeloaderbackdoortrojan

© 2018-2025

Terms | Privacy