smokeloader | b354a8ec3709c8992792894fdc71f0f710546a26eb46f7a07ef4f8d62f8fa4e0 | Triage

Submit
Reports

Overview

overview

Static

static

dridex

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

Target

b354a8ec3709c8992792894fdc71f0f710546a26eb46f7a07ef4f8d62f8fa4e0
Size

223KB
Sample

221225-dzmhpaeb8t
MD5

76e6e2b187f524abcd8abe0eabef5354
SHA1

e81a59d9f15d7c92948ede075502535a2e5c2131
SHA256

b354a8ec3709c8992792894fdc71f0f710546a26eb46f7a07ef4f8d62f8fa4e0
SHA512

6bac4209fc728730a657586372e4232f4b2b52dc36330fa7f910754c9a5c3f180d7316cdf0edde5b1bb8e35a4fe2a7d5f3427675c7360a4a614c8b1ae9305bf5
SSDEEP

3072:RDJCGMLn25F2uKDvQnv/3Ld+bFBTdIN7HF+5auDUcV4f/ln:+GMLnggQnvvhSIW5aMUt

Score

10^/10

smokeloader backdoor trojan

Static task

static1

Behavioral task

behavioral1

Sample

b354a8ec3709c8992792894fdc71f0f710546a26eb46f7a07ef4f8d62f8fa4e0.exe

Resource

win10v2004-20221111-en

smokeloader backdoor trojan

windows10-2004-x64

8 signatures

150 seconds

Malware Config

Targets

- Target
  
  b354a8ec3709c8992792894fdc71f0f710546a26eb46f7a07ef4f8d62f8fa4e0
- Size
  
  223KB
- MD5
  
  76e6e2b187f524abcd8abe0eabef5354
- SHA1
  
  e81a59d9f15d7c92948ede075502535a2e5c2131
- SHA256
  
  b354a8ec3709c8992792894fdc71f0f710546a26eb46f7a07ef4f8d62f8fa4e0
- SHA512
  
  6bac4209fc728730a657586372e4232f4b2b52dc36330fa7f910754c9a5c3f180d7316cdf0edde5b1bb8e35a4fe2a7d5f3427675c7360a4a614c8b1ae9305bf5
- SSDEEP
  
  3072:RDJCGMLn25F2uKDvQnv/3Ld+bFBTdIN7HF+5auDUcV4f/ln:+GMLnggQnvvhSIW5aMUt
Score

10^/10

smokeloader backdoor trojan
- Detects Smokeloader packer
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

smokeloaderbackdoortrojan

© 2018-2025

Terms | Privacy