smokeloader | ca179fcb1ba76d3d2b46ddf0303fc54d1c7100d83aa95bcbbf793e6a97dad677 | Triage

Submit
Reports

Overview

overview

Static

static

1

dridex

windows10-2004-x64

Sharing

General

Target

ca179fcb1ba76d3d2b46ddf0303fc54d1c7100d83aa95bcbbf793e6a97dad677
Size

298KB
Sample

230206-wzfn9aae31
MD5

c4002765eba36a4edfd686e94e9d8697
SHA1

ec225d856b44d8c18045ccbd261608b92b8945c0
SHA256

ca179fcb1ba76d3d2b46ddf0303fc54d1c7100d83aa95bcbbf793e6a97dad677
SHA512

51380913a143f6bd7eac3c955dd982cd2ae27f6293c3cd46c08e426eab0583fee55c813d04346fae015cae5090d29b9cf4d9cc3290e549ce86bb0cd2da6ee368
SSDEEP

6144:C2/zBELWp+OHzmii3swQze76fuQj9Ctj7la:CaBEKIOSii8wQKsljctl

Score

10^/10

smokeloader backdoor trojan

Static task

static1

Behavioral task

behavioral1

Sample

ca179fcb1ba76d3d2b46ddf0303fc54d1c7100d83aa95bcbbf793e6a97dad677.exe

Resource

win10v2004-20221111-en

smokeloader backdoor trojan

windows10-2004-x64

8 signatures

150 seconds

Malware Config

Targets

- Target
  
  ca179fcb1ba76d3d2b46ddf0303fc54d1c7100d83aa95bcbbf793e6a97dad677
- Size
  
  298KB
- MD5
  
  c4002765eba36a4edfd686e94e9d8697
- SHA1
  
  ec225d856b44d8c18045ccbd261608b92b8945c0
- SHA256
  
  ca179fcb1ba76d3d2b46ddf0303fc54d1c7100d83aa95bcbbf793e6a97dad677
- SHA512
  
  51380913a143f6bd7eac3c955dd982cd2ae27f6293c3cd46c08e426eab0583fee55c813d04346fae015cae5090d29b9cf4d9cc3290e549ce86bb0cd2da6ee368
- SSDEEP
  
  6144:C2/zBELWp+OHzmii3swQze76fuQj9Ctj7la:CaBEKIOSii8wQKsljctl
Score

10^/10

smokeloader backdoor trojan
- Detects Smokeloader packer
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

smokeloaderbackdoortrojan

© 2018-2024

Terms | Privacy