smokeloader | 26198d682fc0e53bdcd41291560737793e0ecf06561fdf51aec1fe74bb95c2da | Triage

Submit
Reports

Overview

overview

Static

static

dridex

windows10-1703-x64

Sharing

General

Target

26198d682fc0e53bdcd41291560737793e0ecf06561fdf51aec1fe74bb95c2da
Size

259KB
Sample

221028-sm18msgddl
MD5

b59243d9e3dd0d5954d9c0d24310204f
SHA1

b23dc9440de41c4686920eb8bd74b71614fe8832
SHA256

26198d682fc0e53bdcd41291560737793e0ecf06561fdf51aec1fe74bb95c2da
SHA512

eb822af6e78610eed2e32d1eff21e02993058bc598d5ab646f83c256a06f4666e0b7ac90c69bea7198459f6bd9f7d9606b944c66f9789edebb2c29d3d4c71e80
SSDEEP

3072:JXOAsHGXLUsAVZiSGcmj5IOD8KbYzWPq+miEJDYkVtstFtmBY/eRLM/h3i:tLsHQLUhitcPO9bYzwxkDYm2BF8L

Score

10^/10

smokeloader backdoor trojan

Static task

static1

Behavioral task

behavioral1

Sample

26198d682fc0e53bdcd41291560737793e0ecf06561fdf51aec1fe74bb95c2da.exe

Resource

win10-20220901-en

smokeloader backdoor trojan

windows10-1703-x64

10 signatures

150 seconds

Malware Config

Targets

- Target
  
  26198d682fc0e53bdcd41291560737793e0ecf06561fdf51aec1fe74bb95c2da
- Size
  
  259KB
- MD5
  
  b59243d9e3dd0d5954d9c0d24310204f
- SHA1
  
  b23dc9440de41c4686920eb8bd74b71614fe8832
- SHA256
  
  26198d682fc0e53bdcd41291560737793e0ecf06561fdf51aec1fe74bb95c2da
- SHA512
  
  eb822af6e78610eed2e32d1eff21e02993058bc598d5ab646f83c256a06f4666e0b7ac90c69bea7198459f6bd9f7d9606b944c66f9789edebb2c29d3d4c71e80
- SSDEEP
  
  3072:JXOAsHGXLUsAVZiSGcmj5IOD8KbYzWPq+miEJDYkVtstFtmBY/eRLM/h3i:tLsHQLUhitcPO9bYzwxkDYm2BF8L
Score

10^/10

smokeloader backdoor trojan
- Detects Smokeloader packer
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
- Deletes itself
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

smokeloaderbackdoortrojan

© 2018-2025

Terms | Privacy