smokeloader | 9bfff0e990dfbd0a0bff56ae5dd05f91bb80a5336d591c17cef2b68287804716 | Triage

Submit
Reports

Overview

overview

Static

static

dridex

windows10-1703-x64

Sharing

Copy URL Twitter E-mail

General

Target

9bfff0e990dfbd0a0bff56ae5dd05f91bb80a5336d591c17cef2b68287804716
Size

269KB
Sample

221010-bflqyaadfr
MD5

7843ee1c31fe5c8fd2e658a6b5508342
SHA1

ce4552447ca6b4097f12732e4719a3da4e0ec343
SHA256

9bfff0e990dfbd0a0bff56ae5dd05f91bb80a5336d591c17cef2b68287804716
SHA512

b461f4f3b7a40920a6639a73f88b1c7952d8c4d6d21f59f0c9c80a531517eb1a12384dec9a323d616a0fedf19be6007b8f4c7f4ba51dfceb3f9f8f051878095c
SSDEEP

6144:njOThLDQNNziBMFLE5YIhKzewkrwVfquS0:njYxqNzL9AVLwkd

Score

10^/10

smokeloader backdoor trojan

Static task

static1

Behavioral task

behavioral1

Sample

9bfff0e990dfbd0a0bff56ae5dd05f91bb80a5336d591c17cef2b68287804716.exe

Resource

win10-20220812-en

smokeloader backdoor trojan

windows10-1703-x64

9 signatures

150 seconds

Malware Config

Targets

- Target
  
  9bfff0e990dfbd0a0bff56ae5dd05f91bb80a5336d591c17cef2b68287804716
- Size
  
  269KB
- MD5
  
  7843ee1c31fe5c8fd2e658a6b5508342
- SHA1
  
  ce4552447ca6b4097f12732e4719a3da4e0ec343
- SHA256
  
  9bfff0e990dfbd0a0bff56ae5dd05f91bb80a5336d591c17cef2b68287804716
- SHA512
  
  b461f4f3b7a40920a6639a73f88b1c7952d8c4d6d21f59f0c9c80a531517eb1a12384dec9a323d616a0fedf19be6007b8f4c7f4ba51dfceb3f9f8f051878095c
- SSDEEP
  
  6144:njOThLDQNNziBMFLE5YIhKzewkrwVfquS0:njYxqNzL9AVLwkd
Score

10^/10

smokeloader backdoor trojan
- Detects Smokeloader packer
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
- Deletes itself
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

smokeloaderbackdoortrojan

© 2018-2025

Terms | Privacy