smokeloader | e88173448664121ca9f43d08897218b6afcd00309aff754e5d9e2a9e8e5e4bdc | Triage

Submit
Reports

Overview

overview

Static

static

dridex

windows10-1703-x64

Sharing

General

Target

e88173448664121ca9f43d08897218b6afcd00309aff754e5d9e2a9e8e5e4bdc
Size

313KB
Sample

221230-c8zc6seg85
MD5

66338212fc301e2cba3fce4b869dff9a
SHA1

557bae17615dc90124380b3d71869708395f8a49
SHA256

e88173448664121ca9f43d08897218b6afcd00309aff754e5d9e2a9e8e5e4bdc
SHA512

4e2b28225c603bb47060d91920b34591385f840c3b8dfabb898ee896952848416bc84e562e4bb2a16f81fe4eba8b56af3a1cb4a150832c384b0fb9a33be9e6df
SSDEEP

6144:dLmdlgrOMskYX8nlhxbxGVYGIpyIxZ1WqqdS49:dC3grH1ZjGV+pdYj

Score

10^/10

smokeloader backdoor trojan

Static task

static1

Behavioral task

behavioral1

Sample

e88173448664121ca9f43d08897218b6afcd00309aff754e5d9e2a9e8e5e4bdc.exe

Resource

win10-20220812-en

smokeloader backdoor trojan

windows10-1703-x64

9 signatures

150 seconds

Malware Config

Targets

- Target
  
  e88173448664121ca9f43d08897218b6afcd00309aff754e5d9e2a9e8e5e4bdc
- Size
  
  313KB
- MD5
  
  66338212fc301e2cba3fce4b869dff9a
- SHA1
  
  557bae17615dc90124380b3d71869708395f8a49
- SHA256
  
  e88173448664121ca9f43d08897218b6afcd00309aff754e5d9e2a9e8e5e4bdc
- SHA512
  
  4e2b28225c603bb47060d91920b34591385f840c3b8dfabb898ee896952848416bc84e562e4bb2a16f81fe4eba8b56af3a1cb4a150832c384b0fb9a33be9e6df
- SSDEEP
  
  6144:dLmdlgrOMskYX8nlhxbxGVYGIpyIxZ1WqqdS49:dC3grH1ZjGV+pdYj
Score

10^/10

smokeloader backdoor trojan
- Detects Smokeloader packer
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
- Deletes itself
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

smokeloaderbackdoortrojan

© 2018-2024

Terms | Privacy