smokeloader | 5a704e1ef4f901c98cd96a648268952ea4791c2dc76410ecf430f311346cc2ef | Triage

Submit
Reports

Overview

overview

Static

static

dridex

windows10-2004-x64

Sharing

General

Target

5a704e1ef4f901c98cd96a648268952ea4791c2dc76410ecf430f311346cc2ef
Size

210KB
Sample

221031-j6swyabcdl
MD5

9ebbbb787864b20e7893c7b63dd94390
SHA1

27768f4cbb6bf9aa3f3106baca548a3fd447bf51
SHA256

5a704e1ef4f901c98cd96a648268952ea4791c2dc76410ecf430f311346cc2ef
SHA512

c0e77471ab7ca3392598404ce252a42e2ea70bc508ad9007a86cf13d7c4142632e1f5ede8dd57b9146dd4dd5ea51f7ee81b5096f54625300b07116a148519e5f
SSDEEP

3072:G/46TMeN0Y53IdLMde0h6rX5WvkFSH9Nm64Ezy/bd7I3Okx:G/xTH+hLMde0hw8Hvm6VOb5I+k

Score

10^/10

smokeloader backdoor trojan

Static task

static1

Behavioral task

behavioral1

Sample

5a704e1ef4f901c98cd96a648268952ea4791c2dc76410ecf430f311346cc2ef.exe

Resource

win10v2004-20220812-en

smokeloader backdoor trojan

windows10-2004-x64

8 signatures

150 seconds

Malware Config

Targets

- Target
  
  5a704e1ef4f901c98cd96a648268952ea4791c2dc76410ecf430f311346cc2ef
- Size
  
  210KB
- MD5
  
  9ebbbb787864b20e7893c7b63dd94390
- SHA1
  
  27768f4cbb6bf9aa3f3106baca548a3fd447bf51
- SHA256
  
  5a704e1ef4f901c98cd96a648268952ea4791c2dc76410ecf430f311346cc2ef
- SHA512
  
  c0e77471ab7ca3392598404ce252a42e2ea70bc508ad9007a86cf13d7c4142632e1f5ede8dd57b9146dd4dd5ea51f7ee81b5096f54625300b07116a148519e5f
- SSDEEP
  
  3072:G/46TMeN0Y53IdLMde0h6rX5WvkFSH9Nm64Ezy/bd7I3Okx:G/xTH+hLMde0hw8Hvm6VOb5I+k
Score

10^/10

smokeloader backdoor trojan
- Detects Smokeloader packer
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

smokeloaderbackdoortrojan

© 2018-2025

Terms | Privacy