smokeloader | 670eafdb5577bcabc3cf12d159edde0190f9e5c26d7ba8d6a6e1fb6cc4845733 | Triage

Submit
Reports

Overview

overview

Static

static

dridex

windows10-2004-x64

Sharing

General

Target

670eafdb5577bcabc3cf12d159edde0190f9e5c26d7ba8d6a6e1fb6cc4845733
Size

273KB
Sample

221206-eaqz9ahc74
MD5

fdf497f43dd77744d0e7567a55b5d730
SHA1

5ff66b9d66a8fdee50e4c4935e527d8981800f30
SHA256

670eafdb5577bcabc3cf12d159edde0190f9e5c26d7ba8d6a6e1fb6cc4845733
SHA512

f55a24916fc55ff1983f07b23ff3524a9237d0bccbb339d53026e412b2890d71140c4c0b61c4335a1d7bce4d3265ab3a83297db9672b49017ad57505760dc21a
SSDEEP

6144:29CJMW6pJTTJTY0XJ9xRz5aUiMBIDcPaVS:29KMW6bTT5LXjxLC5DcCVS

Score

10^/10

smokeloader backdoor trojan

Static task

static1

Behavioral task

behavioral1

Sample

670eafdb5577bcabc3cf12d159edde0190f9e5c26d7ba8d6a6e1fb6cc4845733.exe

Resource

win10v2004-20221111-en

smokeloader backdoor trojan

windows10-2004-x64

9 signatures

150 seconds

Malware Config

Targets

- Target
  
  670eafdb5577bcabc3cf12d159edde0190f9e5c26d7ba8d6a6e1fb6cc4845733
- Size
  
  273KB
- MD5
  
  fdf497f43dd77744d0e7567a55b5d730
- SHA1
  
  5ff66b9d66a8fdee50e4c4935e527d8981800f30
- SHA256
  
  670eafdb5577bcabc3cf12d159edde0190f9e5c26d7ba8d6a6e1fb6cc4845733
- SHA512
  
  f55a24916fc55ff1983f07b23ff3524a9237d0bccbb339d53026e412b2890d71140c4c0b61c4335a1d7bce4d3265ab3a83297db9672b49017ad57505760dc21a
- SSDEEP
  
  6144:29CJMW6pJTTJTY0XJ9xRz5aUiMBIDcPaVS:29KMW6bTT5LXjxLC5DcCVS
Score

10^/10

smokeloader backdoor trojan
- Detects Smokeloader packer
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

smokeloaderbackdoortrojan

© 2018-2024

Terms | Privacy