smokeloader | 11b8480d676222f3edda1496120f4d6ae1480b4bd408c0327778b5cde68736cb | Triage

Submit
Reports

Overview

overview

Static

static

dridex

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

Target

11b8480d676222f3edda1496120f4d6ae1480b4bd408c0327778b5cde68736cb
Size

285KB
Sample

221105-3w3g6scffr
MD5

6e46f661b14c79690fcdee2bd0ca72ae
SHA1

4ffc8525d9a2e7451409c38552d0bf0b466bf4cc
SHA256

11b8480d676222f3edda1496120f4d6ae1480b4bd408c0327778b5cde68736cb
SHA512

d1fed8aeddd48f72756cff62acad22245d812c46c6d7d12d6ba951a1d78920393ad82f2de8dc96aa1b42e5c5225062ab2c4b1d535d06d024f8f8fb2801f42a42
SSDEEP

3072:exYE7GgOjaQSBZ5h45EpLLmaEvQphekGnQKY3QAyORMOfglmW5E:eDvOjuPjJpn/EesnQKYgXORpg

Score

10^/10

smokeloader backdoor trojan

Static task

static1

Behavioral task

behavioral1

Sample

11b8480d676222f3edda1496120f4d6ae1480b4bd408c0327778b5cde68736cb.exe

Resource

win10v2004-20220812-en

smokeloader backdoor trojan

windows10-2004-x64

8 signatures

150 seconds

Malware Config

Targets

- Target
  
  11b8480d676222f3edda1496120f4d6ae1480b4bd408c0327778b5cde68736cb
- Size
  
  285KB
- MD5
  
  6e46f661b14c79690fcdee2bd0ca72ae
- SHA1
  
  4ffc8525d9a2e7451409c38552d0bf0b466bf4cc
- SHA256
  
  11b8480d676222f3edda1496120f4d6ae1480b4bd408c0327778b5cde68736cb
- SHA512
  
  d1fed8aeddd48f72756cff62acad22245d812c46c6d7d12d6ba951a1d78920393ad82f2de8dc96aa1b42e5c5225062ab2c4b1d535d06d024f8f8fb2801f42a42
- SSDEEP
  
  3072:exYE7GgOjaQSBZ5h45EpLLmaEvQphekGnQKY3QAyORMOfglmW5E:eDvOjuPjJpn/EesnQKYgXORpg
Score

10^/10

smokeloader backdoor trojan
- Detects Smokeloader packer
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

smokeloaderbackdoortrojan

© 2018-2025

Terms | Privacy