smokeloader | 0b3feea8f744a9fceb6bb9ab5219b149eb91e856fd6a833f940c960680fdd5f6 | Triage

Submit
Reports

Overview

overview

Static

static

dridex

windows10-2004-x64

Sharing

General

Target

0b3feea8f744a9fceb6bb9ab5219b149eb91e856fd6a833f940c960680fdd5f6
Size

271KB
Sample

221005-y9p2safgdq
MD5

8e5ce3f1be6f3267f6f6363970f0fe8b
SHA1

386760fc670a04ff5643e3f05f39c043a81d1bf2
SHA256

0b3feea8f744a9fceb6bb9ab5219b149eb91e856fd6a833f940c960680fdd5f6
SHA512

e0d6723187f98b8f32a4c808ad6041e7091909b2b30a9b37b3f87830dc6a1e8319d4ab24ca335aceb7debcd78658f073b3ea13bfb273227930a6e7163b6b7198
SSDEEP

6144:DnxGTLpJGw4UXb71YxkxwEE29zmjRuzbgwu+bnClBwVfUU:DYNJGwv18k+WzqunnQHU

Score

10^/10

smokeloader backdoor trojan

Static task

static1

Behavioral task

behavioral1

Sample

0b3feea8f744a9fceb6bb9ab5219b149eb91e856fd6a833f940c960680fdd5f6.exe

Resource

win10v2004-20220901-en

smokeloader backdoor trojan

windows10-2004-x64

11 signatures

150 seconds

Malware Config

Targets

- Target
  
  0b3feea8f744a9fceb6bb9ab5219b149eb91e856fd6a833f940c960680fdd5f6
- Size
  
  271KB
- MD5
  
  8e5ce3f1be6f3267f6f6363970f0fe8b
- SHA1
  
  386760fc670a04ff5643e3f05f39c043a81d1bf2
- SHA256
  
  0b3feea8f744a9fceb6bb9ab5219b149eb91e856fd6a833f940c960680fdd5f6
- SHA512
  
  e0d6723187f98b8f32a4c808ad6041e7091909b2b30a9b37b3f87830dc6a1e8319d4ab24ca335aceb7debcd78658f073b3ea13bfb273227930a6e7163b6b7198
- SSDEEP
  
  6144:DnxGTLpJGw4UXb71YxkxwEE29zmjRuzbgwu+bnClBwVfUU:DYNJGwv18k+WzqunnQHU
Score

10^/10

smokeloader backdoor trojan
- Detects Smokeloader packer
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
- Downloads MZ/PE file
- Executes dropped EXE
- Legitimate hosting services abused for malware hosting/C2
behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Web Service

Impact

Tasks

static1

behavioral1

smokeloaderbackdoortrojan

© 2018-2024

Terms | Privacy