smokeloader | 74ec7188361182f24301003f9d156d6a9b4dfb438f98731c5e525c782763f978 | Triage

Submit
Reports

Overview

overview

Static

static

1

dridex

windows10-2004-x64

Sharing

General

Target

74ec7188361182f24301003f9d156d6a9b4dfb438f98731c5e525c782763f978
Size

194KB
Sample

230208-actfyagc83
MD5

f8427b08ac727626627e7bf690dba7dc
SHA1

835ffec5aeecde9838755c789abe576eb360ea59
SHA256

74ec7188361182f24301003f9d156d6a9b4dfb438f98731c5e525c782763f978
SHA512

cad22eb4ad19dec53b676aaa16d927e419b5ab50ea67294c01ffa4b2959b84323aaa9279c3db38dbd24bd75dfb7261af347832118c131b46fdfeedfc1f3839a9
SSDEEP

3072:Ff8OwwHIEWFNALm4wNWoa5FCN/+TpWlvi5qUG33bJJ8YZvpn:Ff8lnaLmTN6CN/+T4MIUS3/Zp

Score

10^/10

smokeloader backdoor trojan

Static task

static1

Behavioral task

behavioral1

Sample

74ec7188361182f24301003f9d156d6a9b4dfb438f98731c5e525c782763f978.exe

Resource

win10v2004-20220901-en

smokeloader backdoor trojan

windows10-2004-x64

8 signatures

150 seconds

Malware Config

Targets

- Target
  
  74ec7188361182f24301003f9d156d6a9b4dfb438f98731c5e525c782763f978
- Size
  
  194KB
- MD5
  
  f8427b08ac727626627e7bf690dba7dc
- SHA1
  
  835ffec5aeecde9838755c789abe576eb360ea59
- SHA256
  
  74ec7188361182f24301003f9d156d6a9b4dfb438f98731c5e525c782763f978
- SHA512
  
  cad22eb4ad19dec53b676aaa16d927e419b5ab50ea67294c01ffa4b2959b84323aaa9279c3db38dbd24bd75dfb7261af347832118c131b46fdfeedfc1f3839a9
- SSDEEP
  
  3072:Ff8OwwHIEWFNALm4wNWoa5FCN/+TpWlvi5qUG33bJJ8YZvpn:Ff8lnaLmTN6CN/+T4MIUS3/Zp
Score

10^/10

smokeloader backdoor trojan
- Detects Smokeloader packer
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

smokeloaderbackdoortrojan

© 2018-2025

Terms | Privacy