smokeloader | 955a4b0cb405875bc30413b0469ea20523aebd5555e6fb05af1e3cb6c5396f74 | Triage

Submit
Reports

Overview

overview

Static

static

dridex

windows10-2004-x64

Sharing

General

Target

955a4b0cb405875bc30413b0469ea20523aebd5555e6fb05af1e3cb6c5396f74
Size

186KB
Sample

221123-l6klnsge4w
MD5

d81512bd12192d7e4522f181b0f76473
SHA1

c78e87e2f7d2d7241bf196ccd074d4e07e92bae0
SHA256

955a4b0cb405875bc30413b0469ea20523aebd5555e6fb05af1e3cb6c5396f74
SHA512

186b6b58ee6b20d9d73bb0846729c2227da329573b46d495106e5c93ec3a3b5dd2d8d841e390b8ead01eea622ff491e6f5eebeadcf01c36e75218bad861f67b5
SSDEEP

3072:8MBJnFs/X9JLmDeiUWW+lD65P3Wz9nu+wVQUz6/Uvl3Xm56c4u8aYZli:fn+LXiUN+WWzAnVQXel3Xm56c4faYZM

Score

10^/10

smokeloader backdoor trojan

Static task

static1

Behavioral task

behavioral1

Sample

955a4b0cb405875bc30413b0469ea20523aebd5555e6fb05af1e3cb6c5396f74.exe

Resource

win10v2004-20221111-en

smokeloader backdoor trojan

windows10-2004-x64

10 signatures

150 seconds

Malware Config

Targets

- Target
  
  955a4b0cb405875bc30413b0469ea20523aebd5555e6fb05af1e3cb6c5396f74
- Size
  
  186KB
- MD5
  
  d81512bd12192d7e4522f181b0f76473
- SHA1
  
  c78e87e2f7d2d7241bf196ccd074d4e07e92bae0
- SHA256
  
  955a4b0cb405875bc30413b0469ea20523aebd5555e6fb05af1e3cb6c5396f74
- SHA512
  
  186b6b58ee6b20d9d73bb0846729c2227da329573b46d495106e5c93ec3a3b5dd2d8d841e390b8ead01eea622ff491e6f5eebeadcf01c36e75218bad861f67b5
- SSDEEP
  
  3072:8MBJnFs/X9JLmDeiUWW+lD65P3Wz9nu+wVQUz6/Uvl3Xm56c4u8aYZli:fn+LXiUN+WWzAnVQXel3Xm56c4faYZM
Score

10^/10

smokeloader backdoor trojan
- Detects Smokeloader packer
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
- Executes dropped EXE
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

smokeloaderbackdoortrojan

© 2018-2024

Terms | Privacy