smokeloader | 9dd2886489e28d972f7a7b65ac5e440cb431f14c3b5a83bfcdd612339ef263d9 | Triage

Submit
Reports

Overview

overview

Static

static

dridex

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

Target

9dd2886489e28d972f7a7b65ac5e440cb431f14c3b5a83bfcdd612339ef263d9
Size

147KB
Sample

221006-tt1q5ahhd2
MD5

18904968239cc24df29ee4f66b33f3d9
SHA1

7f6b3a94b7c2df9735c5221203fb10a341477753
SHA256

9dd2886489e28d972f7a7b65ac5e440cb431f14c3b5a83bfcdd612339ef263d9
SHA512

5a69d47b157ddc50a1407cf6c72bf5bc0964c3b90f5deaf1ab2f6cd977d43fc0787af933068d3d614e3404f4ec133e891f1240b66da34b020378a1cbb983959d
SSDEEP

3072:cX2d9EtHLD+UElzuKKL34wwwwmIr0Z1YfdAaR/fDQr3HDd4cO:cXk9iLD+xwwwwlr0Z1YHVfi3Ddp

Score

10^/10

smokeloader backdoor trojan

Static task

static1

Behavioral task

behavioral1

Sample

9dd2886489e28d972f7a7b65ac5e440cb431f14c3b5a83bfcdd612339ef263d9.exe

Resource

win10v2004-20220812-en

smokeloader backdoor trojan

windows10-2004-x64

8 signatures

150 seconds

Malware Config

Targets

- Target
  
  9dd2886489e28d972f7a7b65ac5e440cb431f14c3b5a83bfcdd612339ef263d9
- Size
  
  147KB
- MD5
  
  18904968239cc24df29ee4f66b33f3d9
- SHA1
  
  7f6b3a94b7c2df9735c5221203fb10a341477753
- SHA256
  
  9dd2886489e28d972f7a7b65ac5e440cb431f14c3b5a83bfcdd612339ef263d9
- SHA512
  
  5a69d47b157ddc50a1407cf6c72bf5bc0964c3b90f5deaf1ab2f6cd977d43fc0787af933068d3d614e3404f4ec133e891f1240b66da34b020378a1cbb983959d
- SSDEEP
  
  3072:cX2d9EtHLD+UElzuKKL34wwwwmIr0Z1YfdAaR/fDQr3HDd4cO:cXk9iLD+xwwwwlr0Z1YHVfi3Ddp
Score

10^/10

smokeloader backdoor trojan
- Detects Smokeloader packer
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

smokeloaderbackdoortrojan

© 2018-2025

Terms | Privacy