smokeloader | 3d91e9c1309da5be6da0027e5d8ab7b4668c78d7f668fce46640f2b7543b763d | Triage

Submit
Reports

Overview

overview

Static

static

dridex

windows10-1703-x64

Sharing

Copy URL Twitter E-mail

General

Target

3d91e9c1309da5be6da0027e5d8ab7b4668c78d7f668fce46640f2b7543b763d
Size

269KB
Sample

221009-pmmtgaghg6
MD5

b594b5086f67ef2f9579eb2b9cd364e7
SHA1

0e97ae2ce2a7d524895a430513ce4e1628ff30b5
SHA256

3d91e9c1309da5be6da0027e5d8ab7b4668c78d7f668fce46640f2b7543b763d
SHA512

4ba021e86dfe7380f6acc2c9e485de7d6046e06c59b921e0a9a527183366d7950b245da430e165ccb363999b715acbc9b2d1927fa002f9fef0bd66754daa9c2d
SSDEEP

3072:IPXKzEzR4fOAFmLeNM9wN1Co5KSf9sGEXAnUEg+/eR2+H8ByTVM/h3qpZa9uD6Vq:I/9n0g9wNkSFFnUEg3QByRrwVfquS

Score

10^/10

smokeloader backdoor trojan

Static task

static1

Behavioral task

behavioral1

Sample

3d91e9c1309da5be6da0027e5d8ab7b4668c78d7f668fce46640f2b7543b763d.exe

Resource

win10-20220812-en

smokeloader backdoor trojan

windows10-1703-x64

9 signatures

150 seconds

Malware Config

Targets

- Target
  
  3d91e9c1309da5be6da0027e5d8ab7b4668c78d7f668fce46640f2b7543b763d
- Size
  
  269KB
- MD5
  
  b594b5086f67ef2f9579eb2b9cd364e7
- SHA1
  
  0e97ae2ce2a7d524895a430513ce4e1628ff30b5
- SHA256
  
  3d91e9c1309da5be6da0027e5d8ab7b4668c78d7f668fce46640f2b7543b763d
- SHA512
  
  4ba021e86dfe7380f6acc2c9e485de7d6046e06c59b921e0a9a527183366d7950b245da430e165ccb363999b715acbc9b2d1927fa002f9fef0bd66754daa9c2d
- SSDEEP
  
  3072:IPXKzEzR4fOAFmLeNM9wN1Co5KSf9sGEXAnUEg+/eR2+H8ByTVM/h3qpZa9uD6Vq:I/9n0g9wNkSFFnUEg3QByRrwVfquS
Score

10^/10

smokeloader backdoor trojan
- Detects Smokeloader packer
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
- Deletes itself
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

smokeloaderbackdoortrojan

© 2018-2025

Terms | Privacy