smokeloader | 3bcbfbbf7cea5dae4a74c004a42375f64eeaea83e16af04e0b05f71892ba983b | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

dridex

windows10-1703-x64

Sharing

General

Target

3bcbfbbf7cea5dae4a74c004a42375f64eeaea83e16af04e0b05f71892ba983b
Size

260KB
Sample

220906-sxzgsscdbr
MD5

f9d8a2d2995d9b550733eaefc85eabd5
SHA1

a2156ac3490c1ff002364f814d0f19adfdcf4fc5
SHA256

3bcbfbbf7cea5dae4a74c004a42375f64eeaea83e16af04e0b05f71892ba983b
SHA512

49241bc3a906ee14a1f863ec8a10a40504e5194a620313da4e37c483e36a973fa66555d4798da078de7893ca0583feeb9994688422060073a335cc3bd9cdacf6
SSDEEP

6144:eBA6InD7PVaQs6f2kVSxwU0mZx4qUMLWbDAfAqIKnw:eB+nXNbs6f2kVSxwMZ2MLMDA4qIYw

Score

10^/10

smokeloader backdoor trojan

Static task

static1

Behavioral task

behavioral1

Sample

3bcbfbbf7cea5dae4a74c004a42375f64eeaea83e16af04e0b05f71892ba983b.exe

Resource

win10-20220812-en

smokeloader backdoor trojan

windows10-1703-x64

9 signatures

150 seconds

Malware Config

Targets

- Target
  
  3bcbfbbf7cea5dae4a74c004a42375f64eeaea83e16af04e0b05f71892ba983b
- Size
  
  260KB
- MD5
  
  f9d8a2d2995d9b550733eaefc85eabd5
- SHA1
  
  a2156ac3490c1ff002364f814d0f19adfdcf4fc5
- SHA256
  
  3bcbfbbf7cea5dae4a74c004a42375f64eeaea83e16af04e0b05f71892ba983b
- SHA512
  
  49241bc3a906ee14a1f863ec8a10a40504e5194a620313da4e37c483e36a973fa66555d4798da078de7893ca0583feeb9994688422060073a335cc3bd9cdacf6
- SSDEEP
  
  6144:eBA6InD7PVaQs6f2kVSxwU0mZx4qUMLWbDAfAqIKnw:eB+nXNbs6f2kVSxwMZ2MLMDA4qIYw
Score

10^/10

smokeloader backdoor trojan
- Detects Smokeloader packer
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
- Deletes itself
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

smokeloaderbackdoortrojan

© 2018-2025

Terms | Privacy