smokeloader | 449d1b94b6a0159c1ef021dc36c7d282a6c8ccf41502df50be5c2299557af078 | Triage

Submit
Reports

Overview

overview

Static

static

1

dridex

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

Target

449d1b94b6a0159c1ef021dc36c7d282a6c8ccf41502df50be5c2299557af078
Size

196KB
Sample

230213-hk6egabe23
MD5

e139d930a560cb9d5d6570ee631ac149
SHA1

c550632e838d8050aca5d3af5044b50314cb2c46
SHA256

449d1b94b6a0159c1ef021dc36c7d282a6c8ccf41502df50be5c2299557af078
SHA512

863ce434b5d5e8c84144e6c730cd552cbd9ecbf517af99316b73ed3afb512bac5a35e10aab2ba7b525b39351fb99cdec1a78abb82bac68481a5d75801c213321
SSDEEP

3072:jrkwWOLtpwWKzJuxWxvUSf17gmOyDQTnwl3/ssBExZxA5A33qZ:jrPNpKtuxWxvUG7V/lNEROX

Score

10^/10

smokeloader backdoor trojan

Static task

static1

Behavioral task

behavioral1

Sample

449d1b94b6a0159c1ef021dc36c7d282a6c8ccf41502df50be5c2299557af078.exe

Resource

win10v2004-20221111-en

smokeloader backdoor trojan

windows10-2004-x64

10 signatures

150 seconds

Malware Config

Targets

- Target
  
  449d1b94b6a0159c1ef021dc36c7d282a6c8ccf41502df50be5c2299557af078
- Size
  
  196KB
- MD5
  
  e139d930a560cb9d5d6570ee631ac149
- SHA1
  
  c550632e838d8050aca5d3af5044b50314cb2c46
- SHA256
  
  449d1b94b6a0159c1ef021dc36c7d282a6c8ccf41502df50be5c2299557af078
- SHA512
  
  863ce434b5d5e8c84144e6c730cd552cbd9ecbf517af99316b73ed3afb512bac5a35e10aab2ba7b525b39351fb99cdec1a78abb82bac68481a5d75801c213321
- SSDEEP
  
  3072:jrkwWOLtpwWKzJuxWxvUSf17gmOyDQTnwl3/ssBExZxA5A33qZ:jrPNpKtuxWxvUG7V/lNEROX
Score

10^/10

smokeloader backdoor trojan
- Detects Smokeloader packer
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
- Executes dropped EXE
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

smokeloaderbackdoortrojan

© 2018-2025

Terms | Privacy