smokeloader | fa6974932d96986c02c70893ab583a6fa5e620b100037dfc535a8c54392a0c1a | Triage

Submit
Reports

Overview

overview

Static

static

dridex

windows10-1703-x64

Sharing

Copy URL Twitter E-mail

General

Target

fa6974932d96986c02c70893ab583a6fa5e620b100037dfc535a8c54392a0c1a
Size

270KB
Sample

221010-ezg4msagcm
MD5

faf2a2ea28f99e7991e29476d71a409c
SHA1

26e233825fcdfc442d70fa7ec792d61744196b23
SHA256

fa6974932d96986c02c70893ab583a6fa5e620b100037dfc535a8c54392a0c1a
SHA512

481b80254b80b15b610970f28564d0a6886b8f1951d3164b5bdbdf580e3d9031808f05fbb35b52aef478c443f518dd0a4c2c5c59acfe1b170dfc475b71911ea2
SSDEEP

3072:gXhC938a4eOUW+ze2MVO5zLGBHDWXu7dXX4xEDM/h3qpZa9uD6VdyhkhUuS:U8sFqeBULsHqUXI+rwVfquS

Score

10^/10

smokeloader backdoor trojan

Static task

static1

Behavioral task

behavioral1

Sample

fa6974932d96986c02c70893ab583a6fa5e620b100037dfc535a8c54392a0c1a.exe

Resource

win10-20220812-en

smokeloader backdoor trojan

windows10-1703-x64

9 signatures

150 seconds

Malware Config

Targets

- Target
  
  fa6974932d96986c02c70893ab583a6fa5e620b100037dfc535a8c54392a0c1a
- Size
  
  270KB
- MD5
  
  faf2a2ea28f99e7991e29476d71a409c
- SHA1
  
  26e233825fcdfc442d70fa7ec792d61744196b23
- SHA256
  
  fa6974932d96986c02c70893ab583a6fa5e620b100037dfc535a8c54392a0c1a
- SHA512
  
  481b80254b80b15b610970f28564d0a6886b8f1951d3164b5bdbdf580e3d9031808f05fbb35b52aef478c443f518dd0a4c2c5c59acfe1b170dfc475b71911ea2
- SSDEEP
  
  3072:gXhC938a4eOUW+ze2MVO5zLGBHDWXu7dXX4xEDM/h3qpZa9uD6VdyhkhUuS:U8sFqeBULsHqUXI+rwVfquS
Score

10^/10

smokeloader backdoor trojan
- Detects Smokeloader packer
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
- Deletes itself
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

smokeloaderbackdoortrojan

© 2018-2025

Terms | Privacy