smokeloader | e85fbaeccdeb53b3873a8b4d46b73749e475bfb3eac196147dc1679dba2b76a0 | Triage

Submit
Reports

Overview

overview

Static

static

dridex

windows10-1703-x64

Sharing

General

Target

e85fbaeccdeb53b3873a8b4d46b73749e475bfb3eac196147dc1679dba2b76a0
Size

818KB
Sample

221127-hpdj9agb79
MD5

3bc91c80e89a1e1029e8f2296cc08d8c
SHA1

b026d3a0c0e46ae59d302d16d5ea189e8f469f9e
SHA256

e85fbaeccdeb53b3873a8b4d46b73749e475bfb3eac196147dc1679dba2b76a0
SHA512

ac54c9ef42f461f6d2b2426494733b4e40a38837972cc45e190ab959b13dfedce8f619aeb8b85d568cd135de3a9118e6383094852c781a37b9a53f5d996c83d8
SSDEEP

24576:A17r0U376CZ1S4Sjnw58kaJTbk0VkFg/IyXt:qdSFw5RykoX

Score

10^/10

smokeloader backdoor collection trojan

Static task

static1

Behavioral task

behavioral1

Sample

e85fbaeccdeb53b3873a8b4d46b73749e475bfb3eac196147dc1679dba2b76a0.exe

Resource

win10-20220901-en

smokeloader backdoor collection trojan

windows10-1703-x64

12 signatures

150 seconds

Malware Config

Targets

- Target
  
  e85fbaeccdeb53b3873a8b4d46b73749e475bfb3eac196147dc1679dba2b76a0
- Size
  
  818KB
- MD5
  
  3bc91c80e89a1e1029e8f2296cc08d8c
- SHA1
  
  b026d3a0c0e46ae59d302d16d5ea189e8f469f9e
- SHA256
  
  e85fbaeccdeb53b3873a8b4d46b73749e475bfb3eac196147dc1679dba2b76a0
- SHA512
  
  ac54c9ef42f461f6d2b2426494733b4e40a38837972cc45e190ab959b13dfedce8f619aeb8b85d568cd135de3a9118e6383094852c781a37b9a53f5d996c83d8
- SSDEEP
  
  24576:A17r0U376CZ1S4Sjnw58kaJTbk0VkFg/IyXt:qdSFw5RykoX
Score

10^/10

smokeloader backdoor collection trojan
- Detects Smokeloader packer
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
- Deletes itself
- Accesses Microsoft Outlook profiles
  collection
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Email Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

smokeloaderbackdoorcollectiontrojan

© 2018-2024

Terms | Privacy