smokeloader | 66c9cc55925d42f6b3e8b51d3d58df70f6183027e872b9143e78496ab07fa941 | Triage

Submit
Reports

Overview

overview

Static

static

dridex

windows10-1703-x64

Sharing

Copy URL Twitter E-mail

General

Target

66c9cc55925d42f6b3e8b51d3d58df70f6183027e872b9143e78496ab07fa941
Size

243KB
Sample

221025-pm4f8acff9
MD5

4dccff2dc8f5300a30fb1259ee1f3827
SHA1

86006bf9df3ffbe6df37dab4676d7efa69b01bc9
SHA256

66c9cc55925d42f6b3e8b51d3d58df70f6183027e872b9143e78496ab07fa941
SHA512

8dff3141d29b8dd385eeb6e2bf353286551e8523b347f86a7e544069af194de0dabcb2d0ba5be488f7bf38c44960e95cc4015b7862f0af47f7f193c0c383f45b
SSDEEP

3072:eXnKh3sSi9LKPJSg7YD5L0CTSoBdZfnUMTs2gHtaFDJIhm41r1E7Mq6Ub:mgcZLXg7Y1fSoBdtnbAKwhm4Ba7MTu

Score

10^/10

smokeloader backdoor trojan

Static task

static1

Behavioral task

behavioral1

Sample

66c9cc55925d42f6b3e8b51d3d58df70f6183027e872b9143e78496ab07fa941.exe

Resource

win10-20220812-en

smokeloader backdoor trojan

windows10-1703-x64

11 signatures

150 seconds

Malware Config

Targets

- Target
  
  66c9cc55925d42f6b3e8b51d3d58df70f6183027e872b9143e78496ab07fa941
- Size
  
  243KB
- MD5
  
  4dccff2dc8f5300a30fb1259ee1f3827
- SHA1
  
  86006bf9df3ffbe6df37dab4676d7efa69b01bc9
- SHA256
  
  66c9cc55925d42f6b3e8b51d3d58df70f6183027e872b9143e78496ab07fa941
- SHA512
  
  8dff3141d29b8dd385eeb6e2bf353286551e8523b347f86a7e544069af194de0dabcb2d0ba5be488f7bf38c44960e95cc4015b7862f0af47f7f193c0c383f45b
- SSDEEP
  
  3072:eXnKh3sSi9LKPJSg7YD5L0CTSoBdZfnUMTs2gHtaFDJIhm41r1E7Mq6Ub:mgcZLXg7Y1fSoBdtnbAKwhm4Ba7MTu
Score

10^/10

smokeloader backdoor trojan
- Detects Smokeloader packer
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
- Executes dropped EXE
- Deletes itself
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

smokeloaderbackdoortrojan

© 2018-2025

Terms | Privacy