smokeloader | 2c98d72eb39b452488d267b7b90000f1c35feb97736f8ae206a7d284aa3cb5f3 | Triage

Submit
Reports

Overview

overview

Static

static

dridex

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

Target

2c98d72eb39b452488d267b7b90000f1c35feb97736f8ae206a7d284aa3cb5f3
Size

319KB
Sample

230103-tq884afb8s
MD5

9ef8dd8308e8d742f456fd7a2e3601f1
SHA1

e9a9c353c381080ce9a3da8b828c4a6e14cdfc89
SHA256

2c98d72eb39b452488d267b7b90000f1c35feb97736f8ae206a7d284aa3cb5f3
SHA512

97c426f8c7ff87feee8a2fd00a7f5c12f4f7cb647bc0784f94caf611f4214021ff3c26f4bbc12cb7a4b6fed5d7b34422867d2f58e43decd7c98cc19598a19a5d
SSDEEP

6144:6L41iTSj9x7z1xpBrCDeswaIOk+1FjAXTM4xVe+ew:6c1iTSn7z7pZO/FWTMEQ+

Score

10^/10

smokeloader backdoor trojan

Static task

static1

Behavioral task

behavioral1

Sample

2c98d72eb39b452488d267b7b90000f1c35feb97736f8ae206a7d284aa3cb5f3.exe

Resource

win10v2004-20221111-en

smokeloader backdoor trojan

windows10-2004-x64

8 signatures

150 seconds

Malware Config

Targets

- Target
  
  2c98d72eb39b452488d267b7b90000f1c35feb97736f8ae206a7d284aa3cb5f3
- Size
  
  319KB
- MD5
  
  9ef8dd8308e8d742f456fd7a2e3601f1
- SHA1
  
  e9a9c353c381080ce9a3da8b828c4a6e14cdfc89
- SHA256
  
  2c98d72eb39b452488d267b7b90000f1c35feb97736f8ae206a7d284aa3cb5f3
- SHA512
  
  97c426f8c7ff87feee8a2fd00a7f5c12f4f7cb647bc0784f94caf611f4214021ff3c26f4bbc12cb7a4b6fed5d7b34422867d2f58e43decd7c98cc19598a19a5d
- SSDEEP
  
  6144:6L41iTSj9x7z1xpBrCDeswaIOk+1FjAXTM4xVe+ew:6c1iTSn7z7pZO/FWTMEQ+
Score

10^/10

smokeloader backdoor trojan
- Detects Smokeloader packer
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

smokeloaderbackdoortrojan

© 2018-2025

Terms | Privacy