smokeloader | 433a7ef3229c2dcf7562ab6362e684b61d0d9f04debd10eb82cf305e8986fce6 | Triage

Submit
Reports

Overview

overview

Static

static

dridex

windows10-2004-x64

Sharing

General

Target

433a7ef3229c2dcf7562ab6362e684b61d0d9f04debd10eb82cf305e8986fce6
Size

185KB
Sample

221123-qpascshe2t
MD5

5b8750279b30684e044704ee5b0386c9
SHA1

48c55fa2597cd10861b161d921beb5c200994e97
SHA256

433a7ef3229c2dcf7562ab6362e684b61d0d9f04debd10eb82cf305e8986fce6
SHA512

868cc711b9a22d570ae947139663361a443c615ca58e57f2e4e67602c0737ba682c5f8db9b4ece8dd2ab273127d89816ec707494ca2baf9c56153a3ce6776c20
SSDEEP

3072:WiN/KQ3JZeL0psuCWbAs5H+Pb1yItPEpkV94gJwTmJf:9NyLKsuCE+1yoPuox

Score

10^/10

smokeloader backdoor trojan

Static task

static1

Behavioral task

behavioral1

Sample

433a7ef3229c2dcf7562ab6362e684b61d0d9f04debd10eb82cf305e8986fce6.exe

Resource

win10v2004-20221111-en

smokeloader backdoor trojan

windows10-2004-x64

10 signatures

150 seconds

Malware Config

Targets

- Target
  
  433a7ef3229c2dcf7562ab6362e684b61d0d9f04debd10eb82cf305e8986fce6
- Size
  
  185KB
- MD5
  
  5b8750279b30684e044704ee5b0386c9
- SHA1
  
  48c55fa2597cd10861b161d921beb5c200994e97
- SHA256
  
  433a7ef3229c2dcf7562ab6362e684b61d0d9f04debd10eb82cf305e8986fce6
- SHA512
  
  868cc711b9a22d570ae947139663361a443c615ca58e57f2e4e67602c0737ba682c5f8db9b4ece8dd2ab273127d89816ec707494ca2baf9c56153a3ce6776c20
- SSDEEP
  
  3072:WiN/KQ3JZeL0psuCWbAs5H+Pb1yItPEpkV94gJwTmJf:9NyLKsuCE+1yoPuox
Score

10^/10

smokeloader backdoor trojan
- Detects Smokeloader packer
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

smokeloaderbackdoortrojan

© 2018-2024

Terms | Privacy