smokeloader | 3cfd01024abd9359a7dc77ea064e05c09fbea3535d08960b90b86bbbacf781c8 | Triage

Submit
Reports

Overview

overview

Static

static

dridex

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

Target

3cfd01024abd9359a7dc77ea064e05c09fbea3535d08960b90b86bbbacf781c8
Size

298KB
Sample

230201-fnaqvsbh96
MD5

7b31820f165786d448fc29445ac3237e
SHA1

cbfa2bbf722178bb2bb35534684a57c951a2485f
SHA256

3cfd01024abd9359a7dc77ea064e05c09fbea3535d08960b90b86bbbacf781c8
SHA512

a2e43b59f3377ade48e264cfa4354e2e51d2a9e64a6419b838210a5953df4e521e10ee0dc55b5dbdcf0d9ee035a4f6507c077f3e33835faff98c5e63475faaf3
SSDEEP

6144:QbBLhwxjFukecTjnWepsYPVwmqMoIJh8M:Qd1RwjnWLYNPqMB

Score

10^/10

smokeloader backdoor trojan

Static task

static1

Behavioral task

behavioral1

Sample

3cfd01024abd9359a7dc77ea064e05c09fbea3535d08960b90b86bbbacf781c8.exe

Resource

win10v2004-20221111-en

smokeloader backdoor trojan

windows10-2004-x64

12 signatures

150 seconds

Malware Config

Targets

- Target
  
  3cfd01024abd9359a7dc77ea064e05c09fbea3535d08960b90b86bbbacf781c8
- Size
  
  298KB
- MD5
  
  7b31820f165786d448fc29445ac3237e
- SHA1
  
  cbfa2bbf722178bb2bb35534684a57c951a2485f
- SHA256
  
  3cfd01024abd9359a7dc77ea064e05c09fbea3535d08960b90b86bbbacf781c8
- SHA512
  
  a2e43b59f3377ade48e264cfa4354e2e51d2a9e64a6419b838210a5953df4e521e10ee0dc55b5dbdcf0d9ee035a4f6507c077f3e33835faff98c5e63475faaf3
- SSDEEP
  
  6144:QbBLhwxjFukecTjnWepsYPVwmqMoIJh8M:Qd1RwjnWLYNPqMB
Score

10^/10

smokeloader backdoor trojan
- Detects Smokeloader packer
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
- Downloads MZ/PE file
- Executes dropped EXE
- Loads dropped DLL
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

smokeloaderbackdoortrojan

© 2018-2025

Terms | Privacy