smokeloader | 05401b33ceb7fc05452730505ee7853d13c76f58b177002a5188e2b073d4f00c | Triage

Submit
Reports

Overview

overview

Static

static

dridex

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

Target

05401b33ceb7fc05452730505ee7853d13c76f58b177002a5188e2b073d4f00c
Size

194KB
Sample

221020-jy2h4scfen
MD5

67cd7681d0845cd1a896e0801f0485c5
SHA1

fe7be9ae94b5b8baf4ee0cd8da68b3a9bb6d0e6a
SHA256

05401b33ceb7fc05452730505ee7853d13c76f58b177002a5188e2b073d4f00c
SHA512

a029b72e180beea137583b7fbeb5a62c47ca8d42411d67a817abeef2f0c2264823e3d50388eaca519ab1a5e08b730c757b716a8e7e0dd5d8cafd68d9589c6371
SSDEEP

3072:dXm4zELt8mBM5WsytFQ3EsczzkAt0KxuXxe:ZJzELqYQRKQS0QuXg

Score

10^/10

smokeloader backdoor trojan

Static task

static1

Behavioral task

behavioral1

Sample

05401b33ceb7fc05452730505ee7853d13c76f58b177002a5188e2b073d4f00c.exe

Resource

win10v2004-20220812-en

smokeloader backdoor trojan

windows10-2004-x64

8 signatures

150 seconds

Malware Config

Targets

- Target
  
  05401b33ceb7fc05452730505ee7853d13c76f58b177002a5188e2b073d4f00c
- Size
  
  194KB
- MD5
  
  67cd7681d0845cd1a896e0801f0485c5
- SHA1
  
  fe7be9ae94b5b8baf4ee0cd8da68b3a9bb6d0e6a
- SHA256
  
  05401b33ceb7fc05452730505ee7853d13c76f58b177002a5188e2b073d4f00c
- SHA512
  
  a029b72e180beea137583b7fbeb5a62c47ca8d42411d67a817abeef2f0c2264823e3d50388eaca519ab1a5e08b730c757b716a8e7e0dd5d8cafd68d9589c6371
- SSDEEP
  
  3072:dXm4zELt8mBM5WsytFQ3EsczzkAt0KxuXxe:ZJzELqYQRKQS0QuXg
Score

10^/10

smokeloader backdoor trojan
- Detects Smokeloader packer
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

smokeloaderbackdoortrojan

© 2018-2025

Terms | Privacy