smokeloader | ef2f8c18462be7e972bdc6cfbe8615e621b16f581c416c23a6f55254daf00d2b | Triage

Submit
Reports

Overview

overview

Static

static

dridex

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

Target

ef2f8c18462be7e972bdc6cfbe8615e621b16f581c416c23a6f55254daf00d2b
Size

273KB
Sample

221205-xj5h4sfd47
MD5

163200c03750ce16e6c13ef0660815f0
SHA1

5f16dfd00123927b9fcfe533dda5ea425d600e78
SHA256

ef2f8c18462be7e972bdc6cfbe8615e621b16f581c416c23a6f55254daf00d2b
SHA512

396edbc3708fb1d7f5258d5f35b9abc66bb6b56eec2567c46324445541176cb3a9467829ed6eb016cc4d76a5915b522637aec53736307125bb1cfdfbcd71763b
SSDEEP

6144:a+avSZ3G/y3Cc/VET2o0e/EnK/1IDcVZVVS:a+Au3G/y3Cc/ST2osnHDcpVS

Score

10^/10

smokeloader backdoor trojan

Static task

static1

Behavioral task

behavioral1

Sample

ef2f8c18462be7e972bdc6cfbe8615e621b16f581c416c23a6f55254daf00d2b.exe

Resource

win10v2004-20220901-en

smokeloader backdoor trojan

windows10-2004-x64

10 signatures

150 seconds

Malware Config

Targets

- Target
  
  ef2f8c18462be7e972bdc6cfbe8615e621b16f581c416c23a6f55254daf00d2b
- Size
  
  273KB
- MD5
  
  163200c03750ce16e6c13ef0660815f0
- SHA1
  
  5f16dfd00123927b9fcfe533dda5ea425d600e78
- SHA256
  
  ef2f8c18462be7e972bdc6cfbe8615e621b16f581c416c23a6f55254daf00d2b
- SHA512
  
  396edbc3708fb1d7f5258d5f35b9abc66bb6b56eec2567c46324445541176cb3a9467829ed6eb016cc4d76a5915b522637aec53736307125bb1cfdfbcd71763b
- SSDEEP
  
  6144:a+avSZ3G/y3Cc/VET2o0e/EnK/1IDcVZVVS:a+Au3G/y3Cc/ST2osnHDcpVS
Score

10^/10

smokeloader backdoor trojan
- Detects Smokeloader packer
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
- Blocklisted process makes network request
- Downloads MZ/PE file
- Executes dropped EXE
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

smokeloaderbackdoortrojan

© 2018-2025

Terms | Privacy