smokeloader | bd75b81c23ad9d380e2f13b1df46c2810cb86a7789c1503150719d0f5c5736b5 | Triage

Submit
Reports

Overview

overview

Static

static

dridex

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

Target

bd75b81c23ad9d380e2f13b1df46c2810cb86a7789c1503150719d0f5c5736b5
Size

322KB
Sample

221102-qv7dhshbd4
MD5

0a48b97d8375dda22630841e4a4deae0
SHA1

17fef0b707d09ce81d0b5a8fd71baf415025cdcb
SHA256

bd75b81c23ad9d380e2f13b1df46c2810cb86a7789c1503150719d0f5c5736b5
SHA512

208b0d8466d692c3283a7e3aeb6c3fdf11c2f68d1edff2399662375814eacf96fcacbed0811546bc4e26ce2b8e266b5dd85397aa95b06310906ca05e4daeb49d
SSDEEP

6144:S8rig+LRq67cMH36JF+bi9tl8Pd2E7ITsq:S8v+LlB366G9tl+2E7

Score

10^/10

smokeloader backdoor trojan

Static task

static1

Behavioral task

behavioral1

Sample

bd75b81c23ad9d380e2f13b1df46c2810cb86a7789c1503150719d0f5c5736b5.exe

Resource

win10v2004-20220812-en

smokeloader backdoor trojan

windows10-2004-x64

8 signatures

150 seconds

Malware Config

Targets

- Target
  
  bd75b81c23ad9d380e2f13b1df46c2810cb86a7789c1503150719d0f5c5736b5
- Size
  
  322KB
- MD5
  
  0a48b97d8375dda22630841e4a4deae0
- SHA1
  
  17fef0b707d09ce81d0b5a8fd71baf415025cdcb
- SHA256
  
  bd75b81c23ad9d380e2f13b1df46c2810cb86a7789c1503150719d0f5c5736b5
- SHA512
  
  208b0d8466d692c3283a7e3aeb6c3fdf11c2f68d1edff2399662375814eacf96fcacbed0811546bc4e26ce2b8e266b5dd85397aa95b06310906ca05e4daeb49d
- SSDEEP
  
  6144:S8rig+LRq67cMH36JF+bi9tl8Pd2E7ITsq:S8v+LlB366G9tl+2E7
Score

10^/10

smokeloader backdoor trojan
- Detects Smokeloader packer
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

smokeloaderbackdoortrojan

© 2018-2025

Terms | Privacy