smokeloader | f00c8861e17a341a62dc2a9d9692ccd2c198fdd786dddd84d4fa319f049ab2e6 | Triage

Submit
Reports

Overview

overview

Static

static

dridex

windows10-2004-x64

Sharing

General

Target

f00c8861e17a341a62dc2a9d9692ccd2c198fdd786dddd84d4fa319f049ab2e6
Size

273KB
Sample

221128-s2fkgshf5t
MD5

b3c7ea0e1a5d52053d582ed97c12f2f4
SHA1

19c65aebb16c465be786e507a13ec2dc5daf0b27
SHA256

f00c8861e17a341a62dc2a9d9692ccd2c198fdd786dddd84d4fa319f049ab2e6
SHA512

87a83cdd404630eef4edf79aa90aecd5b8d6b9692bc1a24ab552c53691c97542dfc00ae7c98199fd2d765ba1b5c3dac31538e4b2328fb46c58c8c80debdb7349
SSDEEP

3072:K34UiIgTd4Gx9O35OqybQazPUWT1XljkZoY9obtzDFV42l94wLRntzvg49JFQvt:HU0yY9O4q+Pr11jtY9uJ/bVFvg4/FQF

Score

10^/10

smokeloader backdoor trojan

Static task

static1

Behavioral task

behavioral1

Sample

f00c8861e17a341a62dc2a9d9692ccd2c198fdd786dddd84d4fa319f049ab2e6.exe

Resource

win10v2004-20221111-en

smokeloader backdoor trojan

windows10-2004-x64

10 signatures

150 seconds

Malware Config

Targets

- Target
  
  f00c8861e17a341a62dc2a9d9692ccd2c198fdd786dddd84d4fa319f049ab2e6
- Size
  
  273KB
- MD5
  
  b3c7ea0e1a5d52053d582ed97c12f2f4
- SHA1
  
  19c65aebb16c465be786e507a13ec2dc5daf0b27
- SHA256
  
  f00c8861e17a341a62dc2a9d9692ccd2c198fdd786dddd84d4fa319f049ab2e6
- SHA512
  
  87a83cdd404630eef4edf79aa90aecd5b8d6b9692bc1a24ab552c53691c97542dfc00ae7c98199fd2d765ba1b5c3dac31538e4b2328fb46c58c8c80debdb7349
- SSDEEP
  
  3072:K34UiIgTd4Gx9O35OqybQazPUWT1XljkZoY9obtzDFV42l94wLRntzvg49JFQvt:HU0yY9O4q+Pr11jtY9uJ/bVFvg4/FQF
Score

10^/10

smokeloader backdoor trojan
- Detects Smokeloader packer
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
- Executes dropped EXE
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

smokeloaderbackdoortrojan

© 2018-2024

Terms | Privacy