smokeloader | 61e3dc82e6d3f350fc2e55ed6d9457df3d390739900590d1fc5a9a37b0a567f3 | Triage

Submit
Reports

Overview

overview

Static

static

dridex

windows10-1703-x64

Sharing

Copy URL Twitter E-mail

General

Target

61e3dc82e6d3f350fc2e55ed6d9457df3d390739900590d1fc5a9a37b0a567f3
Size

210KB
Sample

221103-lm7xvsggh6
MD5

a3cd4d285e2898716379a0ed56731d66
SHA1

57beae1d27f0b3ca9bfd4b4e89bd42fedaee02cd
SHA256

61e3dc82e6d3f350fc2e55ed6d9457df3d390739900590d1fc5a9a37b0a567f3
SHA512

893949310c7d122d969fd372cbb76f555cb1927e645fea99e68ab271c6ea3da50e5d7484b7bbcbdee37c9f896d73ba507caedbb8b16f669e5337dc52b23e89ce
SSDEEP

3072:bNR0iwq7fJyEuLN1d6qf5xqbvq4lYzBWfY2+7GwpEFq6x:bNGK7By3Lfd5EhoWQVGwpEFq6

Score

10^/10

smokeloader backdoor trojan

Static task

static1

Behavioral task

behavioral1

Sample

61e3dc82e6d3f350fc2e55ed6d9457df3d390739900590d1fc5a9a37b0a567f3.exe

Resource

win10-20220812-en

smokeloader backdoor trojan

windows10-1703-x64

21 signatures

150 seconds

Malware Config

Targets

- Target
  
  61e3dc82e6d3f350fc2e55ed6d9457df3d390739900590d1fc5a9a37b0a567f3
- Size
  
  210KB
- MD5
  
  a3cd4d285e2898716379a0ed56731d66
- SHA1
  
  57beae1d27f0b3ca9bfd4b4e89bd42fedaee02cd
- SHA256
  
  61e3dc82e6d3f350fc2e55ed6d9457df3d390739900590d1fc5a9a37b0a567f3
- SHA512
  
  893949310c7d122d969fd372cbb76f555cb1927e645fea99e68ab271c6ea3da50e5d7484b7bbcbdee37c9f896d73ba507caedbb8b16f669e5337dc52b23e89ce
- SSDEEP
  
  3072:bNR0iwq7fJyEuLN1d6qf5xqbvq4lYzBWfY2+7GwpEFq6x:bNGK7By3Lfd5EhoWQVGwpEFq6
Score

10^/10

smokeloader backdoor trojan
- Detects Smokeloader packer
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
- Downloads MZ/PE file
- Executes dropped EXE
- Deletes itself
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

smokeloaderbackdoortrojan

© 2018-2025

Terms | Privacy