smokeloader | 2bc86254f5f2508a1c38569a6a2d9a05a6aa78140473a46ad2e68f88d2945b31 | Triage

Submit
Reports

Overview

overview

Static

static

dridex

windows10-1703-x64

Sharing

Copy URL Twitter E-mail

General

Target

2bc86254f5f2508a1c38569a6a2d9a05a6aa78140473a46ad2e68f88d2945b31
Size

142KB
Sample

220930-pfevaaedem
MD5

703857a7c44016f3f216e42877142020
SHA1

c7d33821d905f9d349790bbc6c301440b9885130
SHA256

2bc86254f5f2508a1c38569a6a2d9a05a6aa78140473a46ad2e68f88d2945b31
SHA512

0dac80a45b42418fa3b0e05c0eb1c590a7f489a8004d942a99273570eb889a63b5f250c2e0f99ec81e7fde9ef18fffc8ebf9172f2bbcc36460e5b58ab1e4aa5a
SSDEEP

3072:lmJU0j0HUtRgP6IfDx3gG7/R/p+rcyQ1KIB:a0HfP6Iflp/R/UQ1K4

Score

10^/10

smokeloader backdoor trojan

Static task

static1

Behavioral task

behavioral1

Sample

2bc86254f5f2508a1c38569a6a2d9a05a6aa78140473a46ad2e68f88d2945b31.exe

Resource

win10-20220812-en

smokeloader backdoor trojan

windows10-1703-x64

9 signatures

150 seconds

Malware Config

Targets

- Target
  
  2bc86254f5f2508a1c38569a6a2d9a05a6aa78140473a46ad2e68f88d2945b31
- Size
  
  142KB
- MD5
  
  703857a7c44016f3f216e42877142020
- SHA1
  
  c7d33821d905f9d349790bbc6c301440b9885130
- SHA256
  
  2bc86254f5f2508a1c38569a6a2d9a05a6aa78140473a46ad2e68f88d2945b31
- SHA512
  
  0dac80a45b42418fa3b0e05c0eb1c590a7f489a8004d942a99273570eb889a63b5f250c2e0f99ec81e7fde9ef18fffc8ebf9172f2bbcc36460e5b58ab1e4aa5a
- SSDEEP
  
  3072:lmJU0j0HUtRgP6IfDx3gG7/R/p+rcyQ1KIB:a0HfP6Iflp/R/UQ1K4
Score

10^/10

smokeloader backdoor trojan
- Detects Smokeloader packer
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
- Deletes itself
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

smokeloaderbackdoortrojan

© 2018-2025

Terms | Privacy