smokeloader | a43a80be5d20fde9cc66126d136feebeff7a285f379180d23d768238f76a840e | Triage

Submit
Reports

Overview

overview

Static

static

dridex

windows10-1703-x64

Sharing

General

Target

a43a80be5d20fde9cc66126d136feebeff7a285f379180d23d768238f76a840e
Size

145KB
Sample

221006-ewg98sgegq
MD5

2ec275ba773b7ce8088f4e6995cf47fb
SHA1

fa7986990675adcc9426fc2bbc683370284ea31d
SHA256

a43a80be5d20fde9cc66126d136feebeff7a285f379180d23d768238f76a840e
SHA512

ca06db8f5c25b7554efd8a534d46d420cd71ef85ffba871faba34c21dc2dd280638e555d4cb56d786198cce8c5665782615b886a7afac390c88b9e81f74d4d1b
SSDEEP

1536:JbhualYTUBmyMt70m++TjVu/UgMME1F2rXD/4X7sktAnVm1phAiMgJumz3KmPXbj:JbhuzTUkR++4uMcQIHtAna2mW8UwO

Score

10^/10

smokeloader backdoor trojan

Static task

static1

Behavioral task

behavioral1

Sample

a43a80be5d20fde9cc66126d136feebeff7a285f379180d23d768238f76a840e.exe

Resource

win10-20220812-en

smokeloader backdoor trojan

windows10-1703-x64

9 signatures

150 seconds

Malware Config

Targets

- Target
  
  a43a80be5d20fde9cc66126d136feebeff7a285f379180d23d768238f76a840e
- Size
  
  145KB
- MD5
  
  2ec275ba773b7ce8088f4e6995cf47fb
- SHA1
  
  fa7986990675adcc9426fc2bbc683370284ea31d
- SHA256
  
  a43a80be5d20fde9cc66126d136feebeff7a285f379180d23d768238f76a840e
- SHA512
  
  ca06db8f5c25b7554efd8a534d46d420cd71ef85ffba871faba34c21dc2dd280638e555d4cb56d786198cce8c5665782615b886a7afac390c88b9e81f74d4d1b
- SSDEEP
  
  1536:JbhualYTUBmyMt70m++TjVu/UgMME1F2rXD/4X7sktAnVm1phAiMgJumz3KmPXbj:JbhuzTUkR++4uMcQIHtAna2mW8UwO
Score

10^/10

smokeloader backdoor trojan
- Detects Smokeloader packer
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
- Deletes itself
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

smokeloaderbackdoortrojan

© 2018-2024

Terms | Privacy