smokeloader | 4592c6b5f38f82e9c50fcd6c4b5f2c33b925c57933fcaeb400979dce7cf04454 | Triage

Submit
Reports

Overview

overview

Static

static

dridex

windows10-2004-x64

Sharing

General

Target

4592c6b5f38f82e9c50fcd6c4b5f2c33b925c57933fcaeb400979dce7cf04454
Size

163KB
Sample

221117-j6b87adh97
MD5

bb8e86a3fc33caae318aab15fc4d5aeb
SHA1

02f9c735807fb78f7a5fade3bf6c0cf34396fe95
SHA256

4592c6b5f38f82e9c50fcd6c4b5f2c33b925c57933fcaeb400979dce7cf04454
SHA512

c7739f21b200393995b5e3e6b9ab8df59110b0f54ee33285ab6c8e385db1ad30aa652d0335080e95124ef8caab5600b013d748cb809fa7a32806766e024e831c
SSDEEP

3072:TrJlWRnGCoMOTjt5wimxSYrF+eeo/yS5Z6pr4QpBh6JnlgPD:HyZHpi1YrF+TOL6pkEh

Score

10^/10

smokeloader systembc backdoor trojan

Static task

static1

Behavioral task

behavioral1

Sample

4592c6b5f38f82e9c50fcd6c4b5f2c33b925c57933fcaeb400979dce7cf04454.exe

Resource

win10v2004-20221111-en

smokeloader systembc backdoor trojan

windows10-2004-x64

12 signatures

150 seconds

Malware Config

Extracted

Family

systembc

C2

89.248.165.79:443

Targets

- Target
  
  4592c6b5f38f82e9c50fcd6c4b5f2c33b925c57933fcaeb400979dce7cf04454
- Size
  
  163KB
- MD5
  
  bb8e86a3fc33caae318aab15fc4d5aeb
- SHA1
  
  02f9c735807fb78f7a5fade3bf6c0cf34396fe95
- SHA256
  
  4592c6b5f38f82e9c50fcd6c4b5f2c33b925c57933fcaeb400979dce7cf04454
- SHA512
  
  c7739f21b200393995b5e3e6b9ab8df59110b0f54ee33285ab6c8e385db1ad30aa652d0335080e95124ef8caab5600b013d748cb809fa7a32806766e024e831c
- SSDEEP
  
  3072:TrJlWRnGCoMOTjt5wimxSYrF+eeo/yS5Z6pr4QpBh6JnlgPD:HyZHpi1YrF+TOL6pkEh
Score

10^/10

smokeloader systembc backdoor trojan
- Detects Smokeloader packer
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
- SystemBC
  SystemBC is a proxy and remote administration tool first seen in 2019.
  trojan systembc
- Downloads MZ/PE file
- Executes dropped EXE
behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

smokeloadersystembcbackdoortrojan

© 2018-2024

Terms | Privacy