smokeloader | e4861d80302f48027074eccc07b464c721c0e31876ecf77b73ca06397c9111bc | Triage

Submit
Reports

Overview

overview

Static

static

dridex

windows10-2004-x64

Sharing

General

Target

e4861d80302f48027074eccc07b464c721c0e31876ecf77b73ca06397c9111bc
Size

139KB
Sample

221130-bfhz2sdh68
MD5

a10aa0c17258a44e759636c4e9234833
SHA1

51a65c4d4daaf902e6df6af23d7ea4448ce9daeb
SHA256

e4861d80302f48027074eccc07b464c721c0e31876ecf77b73ca06397c9111bc
SHA512

88d56c3b88467876a026a4826087c9a205bcbf4190573a80c2cff3a261059edce43ecb83b2e5c5594d5bfb5f7caf18cc418ed2cd53f207cddba67893e0eca9c4
SSDEEP

1536:Bpu4PL102VxDCsmSr5d6oOJl9G9RBOZ0UP36mXbltxAGd7X1QjujFnew0m3iLMJe:7T+Qr5kYUGo7X1lQkWgJ7XNS

Score

10^/10

smokeloader backdoor trojan

Static task

static1

Behavioral task

behavioral1

Sample

e4861d80302f48027074eccc07b464c721c0e31876ecf77b73ca06397c9111bc.exe

Resource

win10v2004-20221111-en

smokeloader backdoor trojan

windows10-2004-x64

8 signatures

150 seconds

Malware Config

Targets

- Target
  
  e4861d80302f48027074eccc07b464c721c0e31876ecf77b73ca06397c9111bc
- Size
  
  139KB
- MD5
  
  a10aa0c17258a44e759636c4e9234833
- SHA1
  
  51a65c4d4daaf902e6df6af23d7ea4448ce9daeb
- SHA256
  
  e4861d80302f48027074eccc07b464c721c0e31876ecf77b73ca06397c9111bc
- SHA512
  
  88d56c3b88467876a026a4826087c9a205bcbf4190573a80c2cff3a261059edce43ecb83b2e5c5594d5bfb5f7caf18cc418ed2cd53f207cddba67893e0eca9c4
- SSDEEP
  
  1536:Bpu4PL102VxDCsmSr5d6oOJl9G9RBOZ0UP36mXbltxAGd7X1QjujFnew0m3iLMJe:7T+Qr5kYUGo7X1lQkWgJ7XNS
Score

10^/10

smokeloader backdoor trojan
- Detects Smokeloader packer
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

smokeloaderbackdoortrojan

© 2018-2024

Terms | Privacy