smokeloader | 567fd48365da7eec8cacb5866c7418ede8ccf5e7fbda293e6ea8c1d1e63b8fcd | Triage

Submit
Reports

Overview

overview

Static

static

dridex

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

Target

567fd48365da7eec8cacb5866c7418ede8ccf5e7fbda293e6ea8c1d1e63b8fcd
Size

168KB
Sample

221125-2kv4aafa9y
MD5

2c207ee0ba5c3944109ff01e20c73480
SHA1

54913848c723cdf1a79af2fc37f0a03517162baf
SHA256

567fd48365da7eec8cacb5866c7418ede8ccf5e7fbda293e6ea8c1d1e63b8fcd
SHA512

2950324073d18aad5ca86b645f29076f03127934378e6b7575f9f376cdc75405c8b80c925a262512c336bcc9334fe908c38f517a50b3868496d576e753ba1626
SSDEEP

3072:tGXVEp8b/uEx3A1ceS5vCgWn/d2OtBlUw1DZO3axEPrX5f/2B:gQ8j/ISsVLtK3HrXp/2

Score

10^/10

smokeloader backdoor trojan

Static task

static1

Behavioral task

behavioral1

Sample

567fd48365da7eec8cacb5866c7418ede8ccf5e7fbda293e6ea8c1d1e63b8fcd.exe

Resource

win10v2004-20220901-en

smokeloader backdoor trojan

windows10-2004-x64

10 signatures

150 seconds

Malware Config

Targets

- Target
  
  567fd48365da7eec8cacb5866c7418ede8ccf5e7fbda293e6ea8c1d1e63b8fcd
- Size
  
  168KB
- MD5
  
  2c207ee0ba5c3944109ff01e20c73480
- SHA1
  
  54913848c723cdf1a79af2fc37f0a03517162baf
- SHA256
  
  567fd48365da7eec8cacb5866c7418ede8ccf5e7fbda293e6ea8c1d1e63b8fcd
- SHA512
  
  2950324073d18aad5ca86b645f29076f03127934378e6b7575f9f376cdc75405c8b80c925a262512c336bcc9334fe908c38f517a50b3868496d576e753ba1626
- SSDEEP
  
  3072:tGXVEp8b/uEx3A1ceS5vCgWn/d2OtBlUw1DZO3axEPrX5f/2B:gQ8j/ISsVLtK3HrXp/2
Score

10^/10

smokeloader backdoor trojan
- Detects Smokeloader packer
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
- Executes dropped EXE
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

smokeloaderbackdoortrojan

© 2018-2025

Terms | Privacy