smokeloader | 199d72906fa0b63201d19e365cdef73bd30a53cebca194e402d011e5fa13250d | Triage

Submit
Reports

Overview

overview

Static

static

dridex

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

Target

199d72906fa0b63201d19e365cdef73bd30a53cebca194e402d011e5fa13250d
Size

296KB
Sample

230131-q8btrsae3z
MD5

6cb1909e106890dddd87ecc1694848b5
SHA1

e69379d262537c98ba77620d17a75e646bd2476c
SHA256

199d72906fa0b63201d19e365cdef73bd30a53cebca194e402d011e5fa13250d
SHA512

2b5036a6dd2710f73f482ce3ae1cdf7f68e3237c5955f3fecb86a772a0b71c17946bbf59ca77f5535c1f006b5c973138287e3f05f06eefc1cc5fa1607909a738
SSDEEP

3072:jSuqwfBLSMQRo1X1URHCiiZmaePpmqPUx6WfQz86fpC3MM:l3fBLS8B1Y7i8JpmqMoIapC8M

Score

10^/10

smokeloader backdoor trojan

Static task

static1

Behavioral task

behavioral1

Sample

199d72906fa0b63201d19e365cdef73bd30a53cebca194e402d011e5fa13250d.exe

Resource

win10v2004-20220812-en

smokeloader backdoor trojan

windows10-2004-x64

21 signatures

150 seconds

Malware Config

Targets

- Target
  
  199d72906fa0b63201d19e365cdef73bd30a53cebca194e402d011e5fa13250d
- Size
  
  296KB
- MD5
  
  6cb1909e106890dddd87ecc1694848b5
- SHA1
  
  e69379d262537c98ba77620d17a75e646bd2476c
- SHA256
  
  199d72906fa0b63201d19e365cdef73bd30a53cebca194e402d011e5fa13250d
- SHA512
  
  2b5036a6dd2710f73f482ce3ae1cdf7f68e3237c5955f3fecb86a772a0b71c17946bbf59ca77f5535c1f006b5c973138287e3f05f06eefc1cc5fa1607909a738
- SSDEEP
  
  3072:jSuqwfBLSMQRo1X1URHCiiZmaePpmqPUx6WfQz86fpC3MM:l3fBLS8B1Y7i8JpmqMoIapC8M
Score

10^/10

smokeloader backdoor trojan
- Detects Smokeloader packer
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
- Blocklisted process makes network request
- Downloads MZ/PE file
- Executes dropped EXE
- Loads dropped DLL
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

smokeloaderbackdoortrojan

© 2018-2025

Terms | Privacy