smokeloader | 8ef7c8b906a44062f59507f4911cfae65325b5d5ee273cd4d7b1d58659a00b5b | Triage

Submit
Reports

Overview

overview

Static

static

dridex

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

Target

8ef7c8b906a44062f59507f4911cfae65325b5d5ee273cd4d7b1d58659a00b5b
Size

261KB
Sample

230113-cqcrfshc3x
MD5

aa3c4b296745b04185047055a7d881b9
SHA1

8e8bccc7931391c96b83ba529408285763430d97
SHA256

8ef7c8b906a44062f59507f4911cfae65325b5d5ee273cd4d7b1d58659a00b5b
SHA512

02444b6ab74b5c009a700403eaf981a4eadf4338994aca9d49f74c2f07d2b5002d764c4c20310db5c68e735a72f042380daf5a748013dcff7264b931f9b19421
SSDEEP

3072:BXWMEscQn50ix3MA2jyhOlL0NcitNg60AAI2BnsgMe5LRFYUEA7:lxcQ2ix3IOgL05+G2XwUR

Score

10^/10

smokeloader backdoor trojan

Static task

static1

Behavioral task

behavioral1

Sample

8ef7c8b906a44062f59507f4911cfae65325b5d5ee273cd4d7b1d58659a00b5b.exe

Resource

win10v2004-20221111-en

smokeloader backdoor trojan

windows10-2004-x64

8 signatures

150 seconds

Malware Config

Targets

- Target
  
  8ef7c8b906a44062f59507f4911cfae65325b5d5ee273cd4d7b1d58659a00b5b
- Size
  
  261KB
- MD5
  
  aa3c4b296745b04185047055a7d881b9
- SHA1
  
  8e8bccc7931391c96b83ba529408285763430d97
- SHA256
  
  8ef7c8b906a44062f59507f4911cfae65325b5d5ee273cd4d7b1d58659a00b5b
- SHA512
  
  02444b6ab74b5c009a700403eaf981a4eadf4338994aca9d49f74c2f07d2b5002d764c4c20310db5c68e735a72f042380daf5a748013dcff7264b931f9b19421
- SSDEEP
  
  3072:BXWMEscQn50ix3MA2jyhOlL0NcitNg60AAI2BnsgMe5LRFYUEA7:lxcQ2ix3IOgL05+G2XwUR
Score

10^/10

smokeloader backdoor trojan
- Detects Smokeloader packer
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

smokeloaderbackdoortrojan

© 2018-2025

Terms | Privacy