smokeloader | 4ab7fb27091a22102db83095d53615809d4c3564b303723948fb3f248eae1cb3 | Triage

Submit
Reports

Overview

overview

Static

static

1

dridex

windows10-1703-x64

Sharing

General

Target

4ab7fb27091a22102db83095d53615809d4c3564b303723948fb3f248eae1cb3
Size

209KB
Sample

230216-lndqeagh85
MD5

32c7e44719f52ede4d6a7dd6ceccdc70
SHA1

951e2f35afe443245cb50f3c0d736878a1bbf921
SHA256

4ab7fb27091a22102db83095d53615809d4c3564b303723948fb3f248eae1cb3
SHA512

ed02884d2df9c2ec6d12cc7515924351cc10d79925b369e2a6b3e04b509b33c70d470009bc1de473623f552ac2d94bb36a2aad5f24c497c9f0b92377a0dda1b9
SSDEEP

3072:Eqeesf2L1hBR8XAR/wK5dmAo/4u6K7bYxblKXur/dJ:vg2LZSwZ7oxBb5XE

Score

10^/10

smokeloader backdoor trojan

Static task

static1

Behavioral task

behavioral1

Sample

4ab7fb27091a22102db83095d53615809d4c3564b303723948fb3f248eae1cb3.exe

Resource

win10-20220812-en

smokeloader backdoor trojan

windows10-1703-x64

9 signatures

150 seconds

Malware Config

Targets

- Target
  
  4ab7fb27091a22102db83095d53615809d4c3564b303723948fb3f248eae1cb3
- Size
  
  209KB
- MD5
  
  32c7e44719f52ede4d6a7dd6ceccdc70
- SHA1
  
  951e2f35afe443245cb50f3c0d736878a1bbf921
- SHA256
  
  4ab7fb27091a22102db83095d53615809d4c3564b303723948fb3f248eae1cb3
- SHA512
  
  ed02884d2df9c2ec6d12cc7515924351cc10d79925b369e2a6b3e04b509b33c70d470009bc1de473623f552ac2d94bb36a2aad5f24c497c9f0b92377a0dda1b9
- SSDEEP
  
  3072:Eqeesf2L1hBR8XAR/wK5dmAo/4u6K7bYxblKXur/dJ:vg2LZSwZ7oxBb5XE
Score

10^/10

smokeloader backdoor trojan
- Detects Smokeloader packer
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
- Deletes itself
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

smokeloaderbackdoortrojan

© 2018-2024

Terms | Privacy