smokeloader | 0b797e4554fd71f4ef86b8ed2873055303052e759b5c2cc4815e7cfb923bf847 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

dridex

windows10-1703-x64

Sharing

General

Target

0b797e4554fd71f4ef86b8ed2873055303052e759b5c2cc4815e7cfb923bf847
Size

259KB
Sample

220908-emmhlaafhq
MD5

698e409b4dc4e576598100afbfb4c746
SHA1

101da7336333fb74c6c2f3974b06e5364ed6b62c
SHA256

0b797e4554fd71f4ef86b8ed2873055303052e759b5c2cc4815e7cfb923bf847
SHA512

421f72c16ba00c787693540e068ef1ca8e4113f62546761228f1081d3537fbc061ff32453e6333417743d1ccfb1fc40c7cdbf5dd3863d6be3545fa90bc613d3d
SSDEEP

6144:7e+fw+DqhaAJ53U7cbKxA78CaEbuEtn8Dh:7ed+mgI53U7cb37HbuEN

Score

10^/10

smokeloader backdoor trojan

Static task

static1

Behavioral task

behavioral1

Sample

0b797e4554fd71f4ef86b8ed2873055303052e759b5c2cc4815e7cfb923bf847.exe

Resource

win10-20220812-en

smokeloader backdoor trojan

windows10-1703-x64

9 signatures

150 seconds

Malware Config

Targets

- Target
  
  0b797e4554fd71f4ef86b8ed2873055303052e759b5c2cc4815e7cfb923bf847
- Size
  
  259KB
- MD5
  
  698e409b4dc4e576598100afbfb4c746
- SHA1
  
  101da7336333fb74c6c2f3974b06e5364ed6b62c
- SHA256
  
  0b797e4554fd71f4ef86b8ed2873055303052e759b5c2cc4815e7cfb923bf847
- SHA512
  
  421f72c16ba00c787693540e068ef1ca8e4113f62546761228f1081d3537fbc061ff32453e6333417743d1ccfb1fc40c7cdbf5dd3863d6be3545fa90bc613d3d
- SSDEEP
  
  6144:7e+fw+DqhaAJ53U7cbKxA78CaEbuEtn8Dh:7ed+mgI53U7cb37HbuEN
Score

10^/10

smokeloader backdoor trojan
- Detects Smokeloader packer
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
- Deletes itself
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

smokeloaderbackdoortrojan

© 2018-2025

Terms | Privacy