smokeloader | ab3f8033fc78e7618a61832e441cef5133e6ffd88ec743a296ba37a6aa4b45cd | Triage

Submit
Reports

Overview

overview

Static

static

dridex

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

Target

ab3f8033fc78e7618a61832e441cef5133e6ffd88ec743a296ba37a6aa4b45cd
Size

285KB
Sample

221105-z25b6shgb6
MD5

7766e948395f47f942c37081733abe70
SHA1

4594f328e42698f224c7d9a1697e2b77b2b65426
SHA256

ab3f8033fc78e7618a61832e441cef5133e6ffd88ec743a296ba37a6aa4b45cd
SHA512

848ef6376dfdaf25776350a0b7433c453b27b11c43c7589dd8870bb2a93bc59c1dcdf14de7cccad9f0ac07b350a07115c97df3e5105fe6673dcb9dadd34b6623
SSDEEP

3072:1zwqz9qAgzt5NvjnO0wCldrY2dhw2yPsCBCJ/1ZkqClE:ZwqcztK7z2dhw1PsIq

Score

10^/10

smokeloader backdoor trojan

Static task

static1

Behavioral task

behavioral1

Sample

ab3f8033fc78e7618a61832e441cef5133e6ffd88ec743a296ba37a6aa4b45cd.exe

Resource

win10v2004-20220812-en

smokeloader backdoor trojan

windows10-2004-x64

13 signatures

150 seconds

Malware Config

Targets

- Target
  
  ab3f8033fc78e7618a61832e441cef5133e6ffd88ec743a296ba37a6aa4b45cd
- Size
  
  285KB
- MD5
  
  7766e948395f47f942c37081733abe70
- SHA1
  
  4594f328e42698f224c7d9a1697e2b77b2b65426
- SHA256
  
  ab3f8033fc78e7618a61832e441cef5133e6ffd88ec743a296ba37a6aa4b45cd
- SHA512
  
  848ef6376dfdaf25776350a0b7433c453b27b11c43c7589dd8870bb2a93bc59c1dcdf14de7cccad9f0ac07b350a07115c97df3e5105fe6673dcb9dadd34b6623
- SSDEEP
  
  3072:1zwqz9qAgzt5NvjnO0wCldrY2dhw2yPsCBCJ/1ZkqClE:ZwqcztK7z2dhw1PsIq
Score

10^/10

smokeloader backdoor trojan
- Detects Smokeloader packer
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
- Drops file in System32 directory
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

smokeloaderbackdoortrojan

© 2018-2025

Terms | Privacy