smokeloader | 6475a2e6140803a34c39ace3f253dac8946455b1e5b3346c6e2e7bd230ceef78 | Triage

Submit
Reports

Overview

overview

Static

static

dridex

windows10-1703-x64

Sharing

General

Target

6475a2e6140803a34c39ace3f253dac8946455b1e5b3346c6e2e7bd230ceef78
Size

147KB
Sample

221129-x7e85acd8x
MD5

613dd2598bde510a3b066ee923e22023
SHA1

7ec047406a54754f70e929b7c73304d3758df662
SHA256

6475a2e6140803a34c39ace3f253dac8946455b1e5b3346c6e2e7bd230ceef78
SHA512

bdc6916b1f2c153f7d3a5113a92f8cd1ce451de5905c61bc3cc77788263a3ddd88ba48c890684fa54e284b923b7f58030e46e2226ae23db823e181810979da14
SSDEEP

3072:xADts1ZRn+Gy5mS9YcgOlIuHpujv0kBYc54U:usnp+Xq/ITA9CU

Score

10^/10

smokeloader backdoor trojan

Static task

static1

Behavioral task

behavioral1

Sample

6475a2e6140803a34c39ace3f253dac8946455b1e5b3346c6e2e7bd230ceef78.exe

Resource

win10-20220812-en

smokeloader backdoor trojan

windows10-1703-x64

7 signatures

150 seconds

Malware Config

Targets

- Target
  
  6475a2e6140803a34c39ace3f253dac8946455b1e5b3346c6e2e7bd230ceef78
- Size
  
  147KB
- MD5
  
  613dd2598bde510a3b066ee923e22023
- SHA1
  
  7ec047406a54754f70e929b7c73304d3758df662
- SHA256
  
  6475a2e6140803a34c39ace3f253dac8946455b1e5b3346c6e2e7bd230ceef78
- SHA512
  
  bdc6916b1f2c153f7d3a5113a92f8cd1ce451de5905c61bc3cc77788263a3ddd88ba48c890684fa54e284b923b7f58030e46e2226ae23db823e181810979da14
- SSDEEP
  
  3072:xADts1ZRn+Gy5mS9YcgOlIuHpujv0kBYc54U:usnp+Xq/ITA9CU
Score

10^/10

smokeloader backdoor trojan
- Detects Smokeloader packer
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
- Deletes itself
behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

smokeloaderbackdoortrojan

© 2018-2024

Terms | Privacy