smokeloader | c52f8e9bab827f7703d0cc744998e16f826e43e313a43a103dcbf354da153ce4 | Triage

Submit
Reports

Overview

overview

Static

static

dridex

windows10-1703-x64

Sharing

General

Target

c52f8e9bab827f7703d0cc744998e16f826e43e313a43a103dcbf354da153ce4
Size

193KB
Sample

221201-xgfrzahh42
MD5

9a897c5b7206c8d629428f06dc7e4266
SHA1

398863d469e4d787a462095cd707a9b6c817a653
SHA256

c52f8e9bab827f7703d0cc744998e16f826e43e313a43a103dcbf354da153ce4
SHA512

43f4d4490d36a6ec68fb9c2dea5d68717f77b106cdc121cd6878b3dbae2341bf47e06f8c8fd47f28a2ac5846ca0113bd01144109c680478012288bce3f3a90b6
SSDEEP

3072:Sw7sb0eYqRc5zGhcbtO+gzseQfd4m63G27777777BDAbEaif:xuYq7hcbtG2fem63G277777772Ea

Score

10^/10

smokeloader backdoor trojan

Static task

static1

Behavioral task

behavioral1

Sample

c52f8e9bab827f7703d0cc744998e16f826e43e313a43a103dcbf354da153ce4.exe

Resource

win10-20220901-en

smokeloader backdoor trojan

windows10-1703-x64

11 signatures

150 seconds

Malware Config

Targets

- Target
  
  c52f8e9bab827f7703d0cc744998e16f826e43e313a43a103dcbf354da153ce4
- Size
  
  193KB
- MD5
  
  9a897c5b7206c8d629428f06dc7e4266
- SHA1
  
  398863d469e4d787a462095cd707a9b6c817a653
- SHA256
  
  c52f8e9bab827f7703d0cc744998e16f826e43e313a43a103dcbf354da153ce4
- SHA512
  
  43f4d4490d36a6ec68fb9c2dea5d68717f77b106cdc121cd6878b3dbae2341bf47e06f8c8fd47f28a2ac5846ca0113bd01144109c680478012288bce3f3a90b6
- SSDEEP
  
  3072:Sw7sb0eYqRc5zGhcbtO+gzseQfd4m63G27777777BDAbEaif:xuYq7hcbtG2fem63G277777772Ea
Score

10^/10

smokeloader backdoor trojan
- Detects Smokeloader packer
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
- Executes dropped EXE
- Deletes itself
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

smokeloaderbackdoortrojan

© 2018-2025

Terms | Privacy