smokeloader | 4f129431a6773862a20e764facef21fdd3b19d1848791b2a11ed87b0b544ff33 | Triage

Submit
Reports

Overview

overview

Static

static

dridex

windows10-2004-x64

Sharing

General

Target

4f129431a6773862a20e764facef21fdd3b19d1848791b2a11ed87b0b544ff33
Size

274KB
Sample

221128-tsatbagc95
MD5

bb961a842fe0f9085390c32a82faba36
SHA1

5948117e5f68a554ca1bbedb97b781369e8d5fbd
SHA256

4f129431a6773862a20e764facef21fdd3b19d1848791b2a11ed87b0b544ff33
SHA512

2cc0ad79ed1d6d149f729386201e9d3d07cf82f3f46299c136c8bc17dc647763e2568f4c0a1eab83ab6ac9e6306512d57d8336964d1d39f7875c0e3911bc4765
SSDEEP

6144:0q3Gd2+2Wb0+jHq1p3l5FhaBPVFvg4/FQF:dW2+x0+rcv5/EDgSm

Score

10^/10

smokeloader backdoor trojan

Static task

static1

Behavioral task

behavioral1

Sample

4f129431a6773862a20e764facef21fdd3b19d1848791b2a11ed87b0b544ff33.exe

Resource

win10v2004-20221111-en

smokeloader backdoor trojan

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  4f129431a6773862a20e764facef21fdd3b19d1848791b2a11ed87b0b544ff33
- Size
  
  274KB
- MD5
  
  bb961a842fe0f9085390c32a82faba36
- SHA1
  
  5948117e5f68a554ca1bbedb97b781369e8d5fbd
- SHA256
  
  4f129431a6773862a20e764facef21fdd3b19d1848791b2a11ed87b0b544ff33
- SHA512
  
  2cc0ad79ed1d6d149f729386201e9d3d07cf82f3f46299c136c8bc17dc647763e2568f4c0a1eab83ab6ac9e6306512d57d8336964d1d39f7875c0e3911bc4765
- SSDEEP
  
  6144:0q3Gd2+2Wb0+jHq1p3l5FhaBPVFvg4/FQF:dW2+x0+rcv5/EDgSm
Score

10^/10

smokeloader backdoor trojan
- Detects Smokeloader packer
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

smokeloaderbackdoortrojan

© 2018-2024

Terms | Privacy