smokeloader | 199191249d0e878f434094c3135cc8da8f732dde4ad24f5dd3247de0d1dae669 | Triage

Submit
Reports

Overview

overview

Static

static

dridex

windows10-1703-x64

Sharing

General

Target

199191249d0e878f434094c3135cc8da8f732dde4ad24f5dd3247de0d1dae669
Size

271KB
Sample

221005-yymghsfdh9
MD5

43820376e04f10763c1744e7b9797256
SHA1

9c0083dc55b24aa1696e7996b8c171256068a32d
SHA256

199191249d0e878f434094c3135cc8da8f732dde4ad24f5dd3247de0d1dae669
SHA512

97b9e0d81d51b8cb174adb80233b0535207b4252d0191ba0614b99fdbcd9622f384c01c1a1d78f045635f4743fd5e22abbcbe305aa81858add3d2ef421eae547
SSDEEP

6144:Kf4z3LOG9F7cZ3YQzoRuzbgwup6yQUwVfUU:KCCG9F7mWunn0zU

Score

10^/10

smokeloader backdoor trojan

Static task

static1

Behavioral task

behavioral1

Sample

199191249d0e878f434094c3135cc8da8f732dde4ad24f5dd3247de0d1dae669.exe

Resource

win10-20220812-en

smokeloader backdoor trojan

windows10-1703-x64

9 signatures

150 seconds

Malware Config

Targets

- Target
  
  199191249d0e878f434094c3135cc8da8f732dde4ad24f5dd3247de0d1dae669
- Size
  
  271KB
- MD5
  
  43820376e04f10763c1744e7b9797256
- SHA1
  
  9c0083dc55b24aa1696e7996b8c171256068a32d
- SHA256
  
  199191249d0e878f434094c3135cc8da8f732dde4ad24f5dd3247de0d1dae669
- SHA512
  
  97b9e0d81d51b8cb174adb80233b0535207b4252d0191ba0614b99fdbcd9622f384c01c1a1d78f045635f4743fd5e22abbcbe305aa81858add3d2ef421eae547
- SSDEEP
  
  6144:Kf4z3LOG9F7cZ3YQzoRuzbgwup6yQUwVfUU:KCCG9F7mWunn0zU
Score

10^/10

smokeloader backdoor trojan
- Detects Smokeloader packer
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
- Deletes itself
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

smokeloaderbackdoortrojan

© 2018-2024

Terms | Privacy