smokeloader | a90ea24bb49d6c60753959c7708de2a364567b2d4d862bc6a8284be44c672d40 | Triage

Submit
Reports

Overview

overview

Static

static

dridex

windows10-1703-x64

Sharing

General

Target

a90ea24bb49d6c60753959c7708de2a364567b2d4d862bc6a8284be44c672d40
Size

133KB
Sample

221002-nld99sdba6
MD5

5d5a692e65115e4bff23f626804855a1
SHA1

3b1020ef24e7c572e0881540ceb896c111a906af
SHA256

a90ea24bb49d6c60753959c7708de2a364567b2d4d862bc6a8284be44c672d40
SHA512

65ca546cabff3c192d4ec7be2e40e1624b87d83ab9f83064abe76d3127518e2602e21d871f792cc44bb4b70e919fe896d8e177df66b47ec5f799d3856c4f066d
SSDEEP

1536:YzjbBPRx/h5Vw+GIiSRdCJB6wyXVSo4ziJYNQXdAoHtZfUz8CfnIZVN6U3afmlMF:YzRvkSR4xGAVzeYQdxtZfWJn0dKf/31

Score

10^/10

smokeloader backdoor trojan

Static task

static1

Behavioral task

behavioral1

Sample

a90ea24bb49d6c60753959c7708de2a364567b2d4d862bc6a8284be44c672d40.exe

Resource

win10-20220812-en

smokeloader backdoor trojan

windows10-1703-x64

11 signatures

150 seconds

Malware Config

Targets

- Target
  
  a90ea24bb49d6c60753959c7708de2a364567b2d4d862bc6a8284be44c672d40
- Size
  
  133KB
- MD5
  
  5d5a692e65115e4bff23f626804855a1
- SHA1
  
  3b1020ef24e7c572e0881540ceb896c111a906af
- SHA256
  
  a90ea24bb49d6c60753959c7708de2a364567b2d4d862bc6a8284be44c672d40
- SHA512
  
  65ca546cabff3c192d4ec7be2e40e1624b87d83ab9f83064abe76d3127518e2602e21d871f792cc44bb4b70e919fe896d8e177df66b47ec5f799d3856c4f066d
- SSDEEP
  
  1536:YzjbBPRx/h5Vw+GIiSRdCJB6wyXVSo4ziJYNQXdAoHtZfUz8CfnIZVN6U3afmlMF:YzRvkSR4xGAVzeYQdxtZfWJn0dKf/31
Score

10^/10

smokeloader backdoor trojan
- Detects Smokeloader packer
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
- Executes dropped EXE
- Deletes itself
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

smokeloaderbackdoortrojan

© 2018-2025

Terms | Privacy