smokeloader | 09059579fa0be3ddbfdf362a25ec46f93ab5be37d1560877eb25e514e89ca0eb | Triage

Submit
Reports

Overview

overview

Static

static

dridex

windows10-1703-x64

Sharing

Copy URL Twitter E-mail

General

Target

09059579fa0be3ddbfdf362a25ec46f93ab5be37d1560877eb25e514e89ca0eb
Size

366KB
Sample

230104-wj9x6acd8s
MD5

51a8e88e45fea7e817c1e081fdc5872c
SHA1

fb9294527eedb50291b871afb6c1a04fd0b60958
SHA256

09059579fa0be3ddbfdf362a25ec46f93ab5be37d1560877eb25e514e89ca0eb
SHA512

9fc0cc3d8f887044d68dec5f51255d10db6a7e9a6942219f726e38d9220b9d3b46190255e36f1cd2ebd2bf3f3c09cf2686fde80ea71e447f2debd574402b5c4d
SSDEEP

6144:/MLl0SlaQbknIBSRF++zfcuoxupmLugx1jT:/MeSAnymrTLoxupmL5

Score

10^/10

smokeloader backdoor trojan

Static task

static1

Behavioral task

behavioral1

Sample

09059579fa0be3ddbfdf362a25ec46f93ab5be37d1560877eb25e514e89ca0eb.exe

Resource

win10-20220812-en

smokeloader backdoor trojan

windows10-1703-x64

21 signatures

150 seconds

Malware Config

Targets

- Target
  
  09059579fa0be3ddbfdf362a25ec46f93ab5be37d1560877eb25e514e89ca0eb
- Size
  
  366KB
- MD5
  
  51a8e88e45fea7e817c1e081fdc5872c
- SHA1
  
  fb9294527eedb50291b871afb6c1a04fd0b60958
- SHA256
  
  09059579fa0be3ddbfdf362a25ec46f93ab5be37d1560877eb25e514e89ca0eb
- SHA512
  
  9fc0cc3d8f887044d68dec5f51255d10db6a7e9a6942219f726e38d9220b9d3b46190255e36f1cd2ebd2bf3f3c09cf2686fde80ea71e447f2debd574402b5c4d
- SSDEEP
  
  6144:/MLl0SlaQbknIBSRF++zfcuoxupmLugx1jT:/MeSAnymrTLoxupmL5
Score

10^/10

smokeloader backdoor trojan
- Detects Smokeloader packer
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
- Blocklisted process makes network request
- Downloads MZ/PE file
- Executes dropped EXE
- Deletes itself
- Loads dropped DLL
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

smokeloaderbackdoortrojan

© 2018-2025

Terms | Privacy