smokeloader | f58752f637bec33f5c6032a0b001f7f6fb3f8ffc6b16be12e69e7a7c42260bc2 | Triage

Submit
Reports

Overview

overview

Static

static

dridex

windows10-2004-x64

Sharing

General

Target

f58752f637bec33f5c6032a0b001f7f6fb3f8ffc6b16be12e69e7a7c42260bc2
Size

139KB
Sample

221130-b2kqrsfe85
MD5

32191aee56b30023f3cd0a6f4e484163
SHA1

2711cc113a1b85117f8794190187f37f69af0a4b
SHA256

f58752f637bec33f5c6032a0b001f7f6fb3f8ffc6b16be12e69e7a7c42260bc2
SHA512

0ac31edbd70062e51876e91c51595cf17dde0f19ff174c3403c81c0a019dc789c0fc2a4ea88cb89f7e6f5ee76925c481ff3a937b762ece2658cf16f851611607
SSDEEP

1536:Tpu4lLGd2l/Tq7Kmgwr56HgAk91k5V/WW/jwHZwSotgGcGCiDRhO+yBLAriIyC3D:dTI2+r5RAEC+F5wp9CiDR1Yt63

Score

10^/10

smokeloader backdoor trojan

Static task

static1

Behavioral task

behavioral1

Sample

f58752f637bec33f5c6032a0b001f7f6fb3f8ffc6b16be12e69e7a7c42260bc2.exe

Resource

win10v2004-20221111-en

smokeloader backdoor trojan

windows10-2004-x64

8 signatures

150 seconds

Malware Config

Targets

- Target
  
  f58752f637bec33f5c6032a0b001f7f6fb3f8ffc6b16be12e69e7a7c42260bc2
- Size
  
  139KB
- MD5
  
  32191aee56b30023f3cd0a6f4e484163
- SHA1
  
  2711cc113a1b85117f8794190187f37f69af0a4b
- SHA256
  
  f58752f637bec33f5c6032a0b001f7f6fb3f8ffc6b16be12e69e7a7c42260bc2
- SHA512
  
  0ac31edbd70062e51876e91c51595cf17dde0f19ff174c3403c81c0a019dc789c0fc2a4ea88cb89f7e6f5ee76925c481ff3a937b762ece2658cf16f851611607
- SSDEEP
  
  1536:Tpu4lLGd2l/Tq7Kmgwr56HgAk91k5V/WW/jwHZwSotgGcGCiDRhO+yBLAriIyC3D:dTI2+r5RAEC+F5wp9CiDR1Yt63
Score

10^/10

smokeloader backdoor trojan
- Detects Smokeloader packer
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

smokeloaderbackdoortrojan

© 2018-2024

Terms | Privacy