smokeloader | a0a9dc9dca037ec22207239bf99c94e577ef00fe6bfa959088377d7fc3ac4912 | Triage

Submit
Reports

Overview

overview

Static

static

dridex

windows10-2004-x64

Sharing

General

Target

a0a9dc9dca037ec22207239bf99c94e577ef00fe6bfa959088377d7fc3ac4912
Size

186KB
Sample

221123-mhnh4ahd4t
MD5

134701afe1946ef02dd43616ea9ad100
SHA1

5a7dc7947a3824e81ed893ba03886d84092c5bae
SHA256

a0a9dc9dca037ec22207239bf99c94e577ef00fe6bfa959088377d7fc3ac4912
SHA512

0ffafcfd26d00823fe9d137ee812ca6fe7bce02cd7f0046dc10eecb579cc435a04896f52f34790aee0987eca9fedb51c4e24de328609485df27c6090e24cda05
SSDEEP

3072:MDusvefFLMLCmFW4xO5leU1ln/4oiKSIviu:Cu5L6rFvw1h/4oRSIa

Score

10^/10

smokeloader backdoor trojan

Static task

static1

Behavioral task

behavioral1

Sample

a0a9dc9dca037ec22207239bf99c94e577ef00fe6bfa959088377d7fc3ac4912.exe

Resource

win10v2004-20221111-en

smokeloader backdoor trojan

windows10-2004-x64

9 signatures

150 seconds

Malware Config

Targets

- Target
  
  a0a9dc9dca037ec22207239bf99c94e577ef00fe6bfa959088377d7fc3ac4912
- Size
  
  186KB
- MD5
  
  134701afe1946ef02dd43616ea9ad100
- SHA1
  
  5a7dc7947a3824e81ed893ba03886d84092c5bae
- SHA256
  
  a0a9dc9dca037ec22207239bf99c94e577ef00fe6bfa959088377d7fc3ac4912
- SHA512
  
  0ffafcfd26d00823fe9d137ee812ca6fe7bce02cd7f0046dc10eecb579cc435a04896f52f34790aee0987eca9fedb51c4e24de328609485df27c6090e24cda05
- SSDEEP
  
  3072:MDusvefFLMLCmFW4xO5leU1ln/4oiKSIviu:Cu5L6rFvw1h/4oRSIa
Score

10^/10

smokeloader backdoor trojan
- Detects Smokeloader packer
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
- Executes dropped EXE
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

smokeloaderbackdoortrojan

© 2018-2024

Terms | Privacy