smokeloader | 6f0a1265c87415ff03070b88a5fb3f9ae9bc5c85700d4ac73d3c67211585eb92 | Triage

Submit
Reports

Overview

overview

Static

static

dridex

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

Target

6f0a1265c87415ff03070b88a5fb3f9ae9bc5c85700d4ac73d3c67211585eb92
Size

215KB
Sample

230102-krdn5sgh7z
MD5

28426ab78c08aa0cfdc9408547e58962
SHA1

2a54394101aad854ff3d6f076b4ad4ff71bc1e2a
SHA256

6f0a1265c87415ff03070b88a5fb3f9ae9bc5c85700d4ac73d3c67211585eb92
SHA512

fa085533c73f6023eaadf7ff6a87b86eb64fe8f6804d50da4370464d1f6c367cba9e5ca60b9a97e244fda10b20ad9cc2e4c9ab9eb0543dfd5314db17cd5fc524
SSDEEP

3072:OX5MGLcL9C8ZbiK5O52ZWdcv1GCxOYXJIdBTwuW6:WFILbusl7xOYa5

Score

10^/10

smokeloader backdoor trojan

Static task

static1

Behavioral task

behavioral1

Sample

6f0a1265c87415ff03070b88a5fb3f9ae9bc5c85700d4ac73d3c67211585eb92.exe

Resource

win10v2004-20220812-en

smokeloader backdoor trojan

windows10-2004-x64

8 signatures

150 seconds

Malware Config

Targets

- Target
  
  6f0a1265c87415ff03070b88a5fb3f9ae9bc5c85700d4ac73d3c67211585eb92
- Size
  
  215KB
- MD5
  
  28426ab78c08aa0cfdc9408547e58962
- SHA1
  
  2a54394101aad854ff3d6f076b4ad4ff71bc1e2a
- SHA256
  
  6f0a1265c87415ff03070b88a5fb3f9ae9bc5c85700d4ac73d3c67211585eb92
- SHA512
  
  fa085533c73f6023eaadf7ff6a87b86eb64fe8f6804d50da4370464d1f6c367cba9e5ca60b9a97e244fda10b20ad9cc2e4c9ab9eb0543dfd5314db17cd5fc524
- SSDEEP
  
  3072:OX5MGLcL9C8ZbiK5O52ZWdcv1GCxOYXJIdBTwuW6:WFILbusl7xOYa5
Score

10^/10

smokeloader backdoor trojan
- Detects Smokeloader packer
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

smokeloaderbackdoortrojan

© 2018-2025

Terms | Privacy