smokeloader | 70ebcfc4e4c91d8e688c57217810997c7ccfb554d258c810cc517ce804655c57 | Triage

Submit
Reports

Overview

overview

Static

static

dridex

windows10-1703-x64

Sharing

Copy URL Twitter E-mail

General

Target

70ebcfc4e4c91d8e688c57217810997c7ccfb554d258c810cc517ce804655c57
Size

269KB
Sample

221009-dfr9tsgcdk
MD5

353e868d0beaf0a5bda01f4fed7fa201
SHA1

d5ae38f92e7678cf5810945e8e6445a3eaa9bf9a
SHA256

70ebcfc4e4c91d8e688c57217810997c7ccfb554d258c810cc517ce804655c57
SHA512

450fb1b0e9be97f3a8f0eeccaf5673fd7eb8c607fb34f1781cb645456a1bcade597ad5934ff7b6faede767f3f9b03f8e96eddd0691f4ae484c5c9116603e0aa6
SSDEEP

3072:9XK5+4Ozq562I4CUAeJHk5UCrh5QDCmbZ0qApq1t53KJFiSDZO97ZEM/h3qpZa9f:5G+VoIX8k5JmbYpq1t94HZO9GrwVfX

Score

10^/10

smokeloader backdoor trojan

Static task

static1

Behavioral task

behavioral1

Sample

70ebcfc4e4c91d8e688c57217810997c7ccfb554d258c810cc517ce804655c57.exe

Resource

win10-20220812-en

smokeloader backdoor trojan

windows10-1703-x64

9 signatures

150 seconds

Malware Config

Targets

- Target
  
  70ebcfc4e4c91d8e688c57217810997c7ccfb554d258c810cc517ce804655c57
- Size
  
  269KB
- MD5
  
  353e868d0beaf0a5bda01f4fed7fa201
- SHA1
  
  d5ae38f92e7678cf5810945e8e6445a3eaa9bf9a
- SHA256
  
  70ebcfc4e4c91d8e688c57217810997c7ccfb554d258c810cc517ce804655c57
- SHA512
  
  450fb1b0e9be97f3a8f0eeccaf5673fd7eb8c607fb34f1781cb645456a1bcade597ad5934ff7b6faede767f3f9b03f8e96eddd0691f4ae484c5c9116603e0aa6
- SSDEEP
  
  3072:9XK5+4Ozq562I4CUAeJHk5UCrh5QDCmbZ0qApq1t53KJFiSDZO97ZEM/h3qpZa9f:5G+VoIX8k5JmbYpq1t94HZO9GrwVfX
Score

10^/10

smokeloader backdoor trojan
- Detects Smokeloader packer
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
- Deletes itself
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

smokeloaderbackdoortrojan

© 2018-2025

Terms | Privacy