smokeloader | 79111c2382431a3c3bd498e137026a0d98f97e4c477ff239e3cf2c48f40d7e29 | Triage

Submit
Reports

Overview

overview

Static

static

dridex

windows10-2004-x64

Sharing

General

Target

79111c2382431a3c3bd498e137026a0d98f97e4c477ff239e3cf2c48f40d7e29
Size

139KB
Sample

221130-afmskabb57
MD5

38e549c7204bdda6ceffb5f583169123
SHA1

6e653c2e3f4594d0f65704ada7177e539b5f941b
SHA256

79111c2382431a3c3bd498e137026a0d98f97e4c477ff239e3cf2c48f40d7e29
SHA512

28d010d4cbd271d1863f0e86bb8318fc0d287225968e5f0f4d6b1f76302ea69becae6da7bff08d690bd6c0ac4cfb1088a11348af5fc76f4e4ae1ad2151212827
SSDEEP

1536:npu4IPLeKlYfLcP8Qmir5p1QV9oyMF7n6p0LBi9NR1/Ts10qiOl4+ER/ASfVV8y:pTIdlIWr589on62LU9NrDmXER/D9Vo

Score

10^/10

smokeloader backdoor trojan

Static task

static1

Behavioral task

behavioral1

Sample

79111c2382431a3c3bd498e137026a0d98f97e4c477ff239e3cf2c48f40d7e29.exe

Resource

win10v2004-20221111-en

smokeloader backdoor trojan

windows10-2004-x64

7 signatures

150 seconds

Malware Config

Targets

- Target
  
  79111c2382431a3c3bd498e137026a0d98f97e4c477ff239e3cf2c48f40d7e29
- Size
  
  139KB
- MD5
  
  38e549c7204bdda6ceffb5f583169123
- SHA1
  
  6e653c2e3f4594d0f65704ada7177e539b5f941b
- SHA256
  
  79111c2382431a3c3bd498e137026a0d98f97e4c477ff239e3cf2c48f40d7e29
- SHA512
  
  28d010d4cbd271d1863f0e86bb8318fc0d287225968e5f0f4d6b1f76302ea69becae6da7bff08d690bd6c0ac4cfb1088a11348af5fc76f4e4ae1ad2151212827
- SSDEEP
  
  1536:npu4IPLeKlYfLcP8Qmir5p1QV9oyMF7n6p0LBi9NR1/Ts10qiOl4+ER/ASfVV8y:pTIdlIWr589on62LU9NrDmXER/D9Vo
Score

10^/10

smokeloader backdoor trojan
- Detects Smokeloader packer
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

smokeloaderbackdoortrojan

© 2018-2024

Terms | Privacy