smokeloader | 367551fbbd5fa62e6ba97d1df35c1563d4dc17abd0a9fe55bd4fe412e8f57b81 | Triage

Submit
Reports

Overview

overview

Static

static

dridex

windows10-2004-x64

Sharing

General

Target

367551fbbd5fa62e6ba97d1df35c1563d4dc17abd0a9fe55bd4fe412e8f57b81
Size

298KB
Sample

221227-l8b3baef93
MD5

fdae63dc5ac405d89889ae7b2028554d
SHA1

135e81127093c3dbc5a11d87553ac67477838b2f
SHA256

367551fbbd5fa62e6ba97d1df35c1563d4dc17abd0a9fe55bd4fe412e8f57b81
SHA512

99f530224cd0d8d18dfdd5c7e2d641946ea4eab00927b71013a6ca35c1c4c788396c74ba2c98102a26c7bddc2800a6b6d3a42ae74ca4dbcd757f1db728d53eff
SSDEEP

6144:nLlHR+XOb0NKSIS6vv4L58xQ3xDPkMo5zXbAc:nhx+zNoSh58xaxDPyrbA

Score

10^/10

smokeloader backdoor trojan

Static task

static1

Behavioral task

behavioral1

Sample

367551fbbd5fa62e6ba97d1df35c1563d4dc17abd0a9fe55bd4fe412e8f57b81.exe

Resource

win10v2004-20220812-en

smokeloader backdoor trojan

windows10-2004-x64

21 signatures

150 seconds

Malware Config

Targets

- Target
  
  367551fbbd5fa62e6ba97d1df35c1563d4dc17abd0a9fe55bd4fe412e8f57b81
- Size
  
  298KB
- MD5
  
  fdae63dc5ac405d89889ae7b2028554d
- SHA1
  
  135e81127093c3dbc5a11d87553ac67477838b2f
- SHA256
  
  367551fbbd5fa62e6ba97d1df35c1563d4dc17abd0a9fe55bd4fe412e8f57b81
- SHA512
  
  99f530224cd0d8d18dfdd5c7e2d641946ea4eab00927b71013a6ca35c1c4c788396c74ba2c98102a26c7bddc2800a6b6d3a42ae74ca4dbcd757f1db728d53eff
- SSDEEP
  
  6144:nLlHR+XOb0NKSIS6vv4L58xQ3xDPkMo5zXbAc:nhx+zNoSh58xaxDPyrbA
Score

10^/10

smokeloader backdoor trojan
- Detects Smokeloader packer
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
- Blocklisted process makes network request
- Downloads MZ/PE file
- Executes dropped EXE
- Loads dropped DLL
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

smokeloaderbackdoortrojan

© 2018-2025

Terms | Privacy