smokeloader | ae3ccf25f2d5fae7e8f70542053bfad99a32ee295593ba10ec2c4250476f653f | Triage

Submit
Reports

Overview

overview

Static

static

dridex

windows10-2004-x64

Sharing

General

Target

ae3ccf25f2d5fae7e8f70542053bfad99a32ee295593ba10ec2c4250476f653f
Size

259KB
Sample

221028-x7fvnacggq
MD5

b732ae631cb2376d1886f4cfaa5c59c9
SHA1

be4c458caf07c2c04bcce3b8c094ce5bad07cc96
SHA256

ae3ccf25f2d5fae7e8f70542053bfad99a32ee295593ba10ec2c4250476f653f
SHA512

a53c66a380c0f242b1caa60ccbf58216452dd3596c228fdaf7f23a6a4ec70b8ca13616a9434325f5be9a064941c5ded4d3ff88ce0e11cf31637c7e91e713d84d
SSDEEP

6144:MCB3OL4E9AX4/fwRNMub784QRvJOY/VV7:zBeUE9gcW2x1DtV7

Score

10^/10

smokeloader backdoor trojan

Static task

static1

Behavioral task

behavioral1

Sample

ae3ccf25f2d5fae7e8f70542053bfad99a32ee295593ba10ec2c4250476f653f.exe

Resource

win10v2004-20220812-en

smokeloader backdoor trojan

windows10-2004-x64

13 signatures

150 seconds

Malware Config

Targets

- Target
  
  ae3ccf25f2d5fae7e8f70542053bfad99a32ee295593ba10ec2c4250476f653f
- Size
  
  259KB
- MD5
  
  b732ae631cb2376d1886f4cfaa5c59c9
- SHA1
  
  be4c458caf07c2c04bcce3b8c094ce5bad07cc96
- SHA256
  
  ae3ccf25f2d5fae7e8f70542053bfad99a32ee295593ba10ec2c4250476f653f
- SHA512
  
  a53c66a380c0f242b1caa60ccbf58216452dd3596c228fdaf7f23a6a4ec70b8ca13616a9434325f5be9a064941c5ded4d3ff88ce0e11cf31637c7e91e713d84d
- SSDEEP
  
  6144:MCB3OL4E9AX4/fwRNMub784QRvJOY/VV7:zBeUE9gcW2x1DtV7
Score

10^/10

smokeloader backdoor trojan
- Detects Smokeloader packer
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
- Drops file in System32 directory
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

smokeloaderbackdoortrojan

© 2018-2025

Terms | Privacy