smokeloader | 72201a1b2f50a5ad9cac55f789b2c04d192b9c117b3d4ed3b36c60b2b6984d2f | Triage

Submit
Reports

Overview

overview

Static

static

dridex

windows10-1703-x64

Sharing

Copy URL Twitter E-mail

General

Target

72201a1b2f50a5ad9cac55f789b2c04d192b9c117b3d4ed3b36c60b2b6984d2f
Size

211KB
Sample

230114-r6enbadd3s
MD5

1fa24c5e8489902136f7e997a0bdd15d
SHA1

f26ef65865ca628fa726a41e8bafbffabf9f935d
SHA256

72201a1b2f50a5ad9cac55f789b2c04d192b9c117b3d4ed3b36c60b2b6984d2f
SHA512

ef116bbb156b7e9fb4792e557490bebb99cf6d864d5f1dc44d6d7c49e06015518efb287748f9d7153974b661e04ef8795cce4fadffd7b1e9dfc152dc857fe3f2
SSDEEP

3072:wXmxkwJYuf3xC35xMXd6w0gX++QRpLXpXTDk4cx9G/apb:kRZuPxC0sw0jCGip

Score

10^/10

smokeloader backdoor trojan

Static task

static1

Behavioral task

behavioral1

Sample

72201a1b2f50a5ad9cac55f789b2c04d192b9c117b3d4ed3b36c60b2b6984d2f.exe

Resource

win10-20220812-en

smokeloader backdoor trojan

windows10-1703-x64

11 signatures

150 seconds

Malware Config

Targets

- Target
  
  72201a1b2f50a5ad9cac55f789b2c04d192b9c117b3d4ed3b36c60b2b6984d2f
- Size
  
  211KB
- MD5
  
  1fa24c5e8489902136f7e997a0bdd15d
- SHA1
  
  f26ef65865ca628fa726a41e8bafbffabf9f935d
- SHA256
  
  72201a1b2f50a5ad9cac55f789b2c04d192b9c117b3d4ed3b36c60b2b6984d2f
- SHA512
  
  ef116bbb156b7e9fb4792e557490bebb99cf6d864d5f1dc44d6d7c49e06015518efb287748f9d7153974b661e04ef8795cce4fadffd7b1e9dfc152dc857fe3f2
- SSDEEP
  
  3072:wXmxkwJYuf3xC35xMXd6w0gX++QRpLXpXTDk4cx9G/apb:kRZuPxC0sw0jCGip
Score

10^/10

smokeloader backdoor trojan
- Detects Smokeloader packer
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
- Executes dropped EXE
- Deletes itself
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

smokeloaderbackdoortrojan

© 2018-2025

Terms | Privacy