smokeloader | 1b3dc066b55dff7bdd51500b85ceec9f944298fcec81f6571ca17a39288068d1 | Triage

Submit
Reports

Overview

overview

Static

static

dridex

windows10-1703-x64

Sharing

General

Target

1b3dc066b55dff7bdd51500b85ceec9f944298fcec81f6571ca17a39288068d1
Size

209KB
Sample

221103-hnh4cahgen
MD5

746056bd83ce5121c29ea7bab4324cbe
SHA1

79e1384f45bea7ecdca11d8d8382dce4315ab11a
SHA256

1b3dc066b55dff7bdd51500b85ceec9f944298fcec81f6571ca17a39288068d1
SHA512

6a0a7dcc99b92cb924f67da0c791774f977fbe541d091f26dbac3f479db900169e1c452c1be8883d9813deae9806cf0ee06ffa50642eb98d692cc9c8244dabd7
SSDEEP

3072:ec9dCCwqSf7nKaL3zeu6/f5XtEx93ljdBpzbXdVKETDY85SY/id8x:ecqqSznBL3CucEx93lJBpzPQLYKd8

Score

10^/10

smokeloader backdoor trojan

Static task

static1

Behavioral task

behavioral1

Sample

1b3dc066b55dff7bdd51500b85ceec9f944298fcec81f6571ca17a39288068d1.exe

Resource

win10-20220812-en

smokeloader backdoor trojan

windows10-1703-x64

21 signatures

150 seconds

Malware Config

Targets

- Target
  
  1b3dc066b55dff7bdd51500b85ceec9f944298fcec81f6571ca17a39288068d1
- Size
  
  209KB
- MD5
  
  746056bd83ce5121c29ea7bab4324cbe
- SHA1
  
  79e1384f45bea7ecdca11d8d8382dce4315ab11a
- SHA256
  
  1b3dc066b55dff7bdd51500b85ceec9f944298fcec81f6571ca17a39288068d1
- SHA512
  
  6a0a7dcc99b92cb924f67da0c791774f977fbe541d091f26dbac3f479db900169e1c452c1be8883d9813deae9806cf0ee06ffa50642eb98d692cc9c8244dabd7
- SSDEEP
  
  3072:ec9dCCwqSf7nKaL3zeu6/f5XtEx93ljdBpzbXdVKETDY85SY/id8x:ecqqSznBL3CucEx93lJBpzPQLYKd8
Score

10^/10

smokeloader backdoor trojan
- Detects Smokeloader packer
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
- Downloads MZ/PE file
- Executes dropped EXE
- Deletes itself
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

smokeloaderbackdoortrojan

© 2018-2025

Terms | Privacy