smokeloader | b1174532d2b70144c1f9a18b4bfb2fe33e27cfe75608508ce1ddde0ecad51508 | Triage

Submit
Reports

Overview

overview

Static

static

1

dridex

windows10-2004-x64

Sharing

General

Target

b1174532d2b70144c1f9a18b4bfb2fe33e27cfe75608508ce1ddde0ecad51508
Size

321KB
Sample

230206-t2gm8aeh36
MD5

283ca6b9729a764872c84df0203e87f2
SHA1

e45f93053ee0d1d58caca373a0701f2ad7e04485
SHA256

b1174532d2b70144c1f9a18b4bfb2fe33e27cfe75608508ce1ddde0ecad51508
SHA512

f5ca0cab39ec5ea66e4640347e425daf2636efafbb2c66819c221711be7fd47302e06eae665343dbb0de02196a99d41108580b37e45340024ec2188d21c3cecc
SSDEEP

6144:G5Lrgy0YVu5/A1s/4o6fd8m2guQj9w4JgPaMc:G5PgYuG2AoSd8Slj6Ta

Score

10^/10

smokeloader backdoor trojan

Static task

static1

Behavioral task

behavioral1

Sample

b1174532d2b70144c1f9a18b4bfb2fe33e27cfe75608508ce1ddde0ecad51508.exe

Resource

win10v2004-20220901-en

smokeloader backdoor trojan

windows10-2004-x64

8 signatures

150 seconds

Malware Config

Targets

- Target
  
  b1174532d2b70144c1f9a18b4bfb2fe33e27cfe75608508ce1ddde0ecad51508
- Size
  
  321KB
- MD5
  
  283ca6b9729a764872c84df0203e87f2
- SHA1
  
  e45f93053ee0d1d58caca373a0701f2ad7e04485
- SHA256
  
  b1174532d2b70144c1f9a18b4bfb2fe33e27cfe75608508ce1ddde0ecad51508
- SHA512
  
  f5ca0cab39ec5ea66e4640347e425daf2636efafbb2c66819c221711be7fd47302e06eae665343dbb0de02196a99d41108580b37e45340024ec2188d21c3cecc
- SSDEEP
  
  6144:G5Lrgy0YVu5/A1s/4o6fd8m2guQj9w4JgPaMc:G5PgYuG2AoSd8Slj6Ta
Score

10^/10

smokeloader backdoor trojan
- Detects Smokeloader packer
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

smokeloaderbackdoortrojan

© 2018-2024

Terms | Privacy