smokeloader | ef075e0148cf6827fe81b47a185341c6ee13741f5b586d1e6551da1e762b5306 | Triage

Submit
Reports

Overview

overview

Static

static

dridex

windows10-1703-x64

Sharing

General

Target

ef075e0148cf6827fe81b47a185341c6ee13741f5b586d1e6551da1e762b5306
Size

320KB
Sample

221206-gkc79aab42
MD5

2d4899cdb123b3f0c0c04d75abec0d7d
SHA1

99c7f1253e9b815184b54da4cd21eb5fe1a3c36f
SHA256

ef075e0148cf6827fe81b47a185341c6ee13741f5b586d1e6551da1e762b5306
SHA512

bf24bf3452aa9861b8fc582e643ba8bac3edb6bf0fdfaa68c5b2677fe81cf59869056ccbdf3ea278af5c1c1a5b676ad0fc539e3c56e36d26fcf74966825ecab4
SSDEEP

6144:rm1y9MLox0RoTUrwW9QG50dkWqXRqiqx+RRF:r+yC8x0RoHmXRqisqRF

Score

10^/10

smokeloader backdoor trojan

Static task

static1

Behavioral task

behavioral1

Sample

ef075e0148cf6827fe81b47a185341c6ee13741f5b586d1e6551da1e762b5306.exe

Resource

win10-20220901-en

smokeloader backdoor trojan

windows10-1703-x64

8 signatures

150 seconds

Malware Config

Targets

- Target
  
  ef075e0148cf6827fe81b47a185341c6ee13741f5b586d1e6551da1e762b5306
- Size
  
  320KB
- MD5
  
  2d4899cdb123b3f0c0c04d75abec0d7d
- SHA1
  
  99c7f1253e9b815184b54da4cd21eb5fe1a3c36f
- SHA256
  
  ef075e0148cf6827fe81b47a185341c6ee13741f5b586d1e6551da1e762b5306
- SHA512
  
  bf24bf3452aa9861b8fc582e643ba8bac3edb6bf0fdfaa68c5b2677fe81cf59869056ccbdf3ea278af5c1c1a5b676ad0fc539e3c56e36d26fcf74966825ecab4
- SSDEEP
  
  6144:rm1y9MLox0RoTUrwW9QG50dkWqXRqiqx+RRF:r+yC8x0RoHmXRqisqRF
Score

10^/10

smokeloader backdoor trojan
- Detects Smokeloader packer
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
- Deletes itself
behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

smokeloaderbackdoortrojan

© 2018-2024

Terms | Privacy