smokeloader | d0f5c199651d287b2fa1b5c390b31c995c1284ecd5291ac456327f7b9efedb34 | Triage

Submit
Reports

Overview

overview

Static

static

dridex

windows10-2004-x64

Sharing

General

Target

d0f5c199651d287b2fa1b5c390b31c995c1284ecd5291ac456327f7b9efedb34
Size

214KB
Sample

221217-j8np1agd57
MD5

0b32a2b3fa507862247ed1131f80d932
SHA1

817cab6b79fe06905068a632dccb21eaa8e77bbf
SHA256

d0f5c199651d287b2fa1b5c390b31c995c1284ecd5291ac456327f7b9efedb34
SHA512

748c7b74d18459544bedbd6b56ea605bd40689098220a243afd127caa0fa7046cf441832541dfb655ae63312c776601c08a8f32924df3406202876717ae47d8f
SSDEEP

3072:0M8/KLBhN4baTR3OaxiydjiXzCyf0OoITL21AiiLszlxBobd40zwUzQRKF+:T1LBhNfisqzCyfmr1kgzlfUd40M2b

Score

10^/10

smokeloader backdoor trojan

Static task

static1

Behavioral task

behavioral1

Sample

d0f5c199651d287b2fa1b5c390b31c995c1284ecd5291ac456327f7b9efedb34.exe

Resource

win10v2004-20221111-en

smokeloader backdoor trojan

windows10-2004-x64

8 signatures

150 seconds

Malware Config

Targets

- Target
  
  d0f5c199651d287b2fa1b5c390b31c995c1284ecd5291ac456327f7b9efedb34
- Size
  
  214KB
- MD5
  
  0b32a2b3fa507862247ed1131f80d932
- SHA1
  
  817cab6b79fe06905068a632dccb21eaa8e77bbf
- SHA256
  
  d0f5c199651d287b2fa1b5c390b31c995c1284ecd5291ac456327f7b9efedb34
- SHA512
  
  748c7b74d18459544bedbd6b56ea605bd40689098220a243afd127caa0fa7046cf441832541dfb655ae63312c776601c08a8f32924df3406202876717ae47d8f
- SSDEEP
  
  3072:0M8/KLBhN4baTR3OaxiydjiXzCyf0OoITL21AiiLszlxBobd40zwUzQRKF+:T1LBhNfisqzCyfmr1kgzlfUd40M2b
Score

10^/10

smokeloader backdoor trojan
- Detects Smokeloader packer
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

smokeloaderbackdoortrojan

© 2018-2025

Terms | Privacy