smokeloader | 4971b543d3b1844694319ddeaebbd43b7a4d708844eda9a7e263d50f80336cda | Triage

Submit
Reports

Overview

overview

Static

static

dridex

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

Target

4971b543d3b1844694319ddeaebbd43b7a4d708844eda9a7e263d50f80336cda
Size

210KB
Sample

221103-18pezaaafn
MD5

2948dc4e9163ac6370760f7ff9cfe349
SHA1

65d497b90d27bcf4724f0dd892c4289977af64e7
SHA256

4971b543d3b1844694319ddeaebbd43b7a4d708844eda9a7e263d50f80336cda
SHA512

aede1ce37033f610ec266690a5e6f27b3999f9d29754358071455bb2dadad1c000979a3820d749cf7849237d04d8d38b5c5089f585a510f50abbebd8d13d9f79
SSDEEP

6144:KX244HgnnwsPQL9fvRd60RHB3tnqffmnf:KXh4Wwhfvqq3U4f

Score

10^/10

smokeloader backdoor trojan

Static task

static1

Behavioral task

behavioral1

Sample

4971b543d3b1844694319ddeaebbd43b7a4d708844eda9a7e263d50f80336cda.exe

Resource

win10v2004-20220901-en

smokeloader backdoor trojan

windows10-2004-x64

10 signatures

150 seconds

Malware Config

Targets

- Target
  
  4971b543d3b1844694319ddeaebbd43b7a4d708844eda9a7e263d50f80336cda
- Size
  
  210KB
- MD5
  
  2948dc4e9163ac6370760f7ff9cfe349
- SHA1
  
  65d497b90d27bcf4724f0dd892c4289977af64e7
- SHA256
  
  4971b543d3b1844694319ddeaebbd43b7a4d708844eda9a7e263d50f80336cda
- SHA512
  
  aede1ce37033f610ec266690a5e6f27b3999f9d29754358071455bb2dadad1c000979a3820d749cf7849237d04d8d38b5c5089f585a510f50abbebd8d13d9f79
- SSDEEP
  
  6144:KX244HgnnwsPQL9fvRd60RHB3tnqffmnf:KXh4Wwhfvqq3U4f
Score

10^/10

smokeloader backdoor trojan
- Detects Smokeloader packer
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
- Executes dropped EXE
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

smokeloaderbackdoortrojan

© 2018-2025

Terms | Privacy