smokeloader | 08ebd3e74886a63b7dcbb4d49c2027555f8b2ff5426c11a124e2b5468511f27a | Triage

Submit
Reports

Overview

overview

Static

static

dridex

windows10-2004-x64

Sharing

General

Target

08ebd3e74886a63b7dcbb4d49c2027555f8b2ff5426c11a124e2b5468511f27a
Size

275KB
Sample

221206-ctgvksgg67
MD5

48e71a07fd0e8221251dd03727b3e558
SHA1

481a47ab47e580d23ead21a8c2d64f17dd92858a
SHA256

08ebd3e74886a63b7dcbb4d49c2027555f8b2ff5426c11a124e2b5468511f27a
SHA512

6ff63ce00cd8d6323aed72dcb581134585151d6563f47caf30bf75297c667d1261d7a6c625de97d2f75593f91ac21a567c8c1238eda1965066fef6a629569b64
SSDEEP

3072:veXVWYoYIShe3dwf3xpWR5zjXZw0YWe0eDt+a/XiVPTsiVRvJTcpLkDAgYgV2qsf:vm1hBf3xKjXZAWe0eDt+YkTsIDcBCVS

Score

10^/10

smokeloader backdoor trojan

Static task

static1

Behavioral task

behavioral1

Sample

08ebd3e74886a63b7dcbb4d49c2027555f8b2ff5426c11a124e2b5468511f27a.exe

Resource

win10v2004-20221111-en

smokeloader backdoor trojan

windows10-2004-x64

9 signatures

150 seconds

Malware Config

Targets

- Target
  
  08ebd3e74886a63b7dcbb4d49c2027555f8b2ff5426c11a124e2b5468511f27a
- Size
  
  275KB
- MD5
  
  48e71a07fd0e8221251dd03727b3e558
- SHA1
  
  481a47ab47e580d23ead21a8c2d64f17dd92858a
- SHA256
  
  08ebd3e74886a63b7dcbb4d49c2027555f8b2ff5426c11a124e2b5468511f27a
- SHA512
  
  6ff63ce00cd8d6323aed72dcb581134585151d6563f47caf30bf75297c667d1261d7a6c625de97d2f75593f91ac21a567c8c1238eda1965066fef6a629569b64
- SSDEEP
  
  3072:veXVWYoYIShe3dwf3xpWR5zjXZw0YWe0eDt+a/XiVPTsiVRvJTcpLkDAgYgV2qsf:vm1hBf3xKjXZAWe0eDt+YkTsIDcBCVS
Score

10^/10

smokeloader backdoor trojan
- Detects Smokeloader packer
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

smokeloaderbackdoortrojan

© 2018-2024

Terms | Privacy