smokeloader | 2e258c2a25553f479516852e18fccb6a133b0ee8c5483050621a57ee3c1e0567 | Triage

Submit
Reports

Overview

overview

Static

static

dridex

windows10-1703-x64

Sharing

General

Target

2e258c2a25553f479516852e18fccb6a133b0ee8c5483050621a57ee3c1e0567
Size

216KB
Sample

221011-vczm6sedf4
MD5

f2982bf127b5847ab407d0e997b577cb
SHA1

d1dae5ac0e1794e9c3b122281bac43d5668accfb
SHA256

2e258c2a25553f479516852e18fccb6a133b0ee8c5483050621a57ee3c1e0567
SHA512

77483c5d24d13a5a2033008d20bde53cb77290b355b3e7cb536e53ae704afcb81bda468d176251015c79d3dff3bb94f31632bcc4b16532cda9b01252418f93aa
SSDEEP

3072:1PaPlOZEEWcLJKzyWt8tKa2GfOhjZxUeCrJY4Y2gm6wdkO:1yCNLJIylKa7faMeClYbwi

Score

10^/10

smokeloader backdoor trojan

Static task

static1

Behavioral task

behavioral1

Sample

2e258c2a25553f479516852e18fccb6a133b0ee8c5483050621a57ee3c1e0567.exe

Resource

win10-20220812-en

smokeloader backdoor trojan

windows10-1703-x64

10 signatures

150 seconds

Malware Config

Targets

- Target
  
  2e258c2a25553f479516852e18fccb6a133b0ee8c5483050621a57ee3c1e0567
- Size
  
  216KB
- MD5
  
  f2982bf127b5847ab407d0e997b577cb
- SHA1
  
  d1dae5ac0e1794e9c3b122281bac43d5668accfb
- SHA256
  
  2e258c2a25553f479516852e18fccb6a133b0ee8c5483050621a57ee3c1e0567
- SHA512
  
  77483c5d24d13a5a2033008d20bde53cb77290b355b3e7cb536e53ae704afcb81bda468d176251015c79d3dff3bb94f31632bcc4b16532cda9b01252418f93aa
- SSDEEP
  
  3072:1PaPlOZEEWcLJKzyWt8tKa2GfOhjZxUeCrJY4Y2gm6wdkO:1yCNLJIylKa7faMeClYbwi
Score

10^/10

smokeloader backdoor trojan
- Detects Smokeloader packer
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
- Downloads MZ/PE file
- Executes dropped EXE
- Deletes itself
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

smokeloaderbackdoortrojan

© 2018-2025

Terms | Privacy