smokeloader | ba26b5ef3cc270809ec45ffad4aa9dc2f5d69772dbfbcbd5d970d74fcf34f53f | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

dridex

windows10-1703-x64

Sharing

General

Target

ba26b5ef3cc270809ec45ffad4aa9dc2f5d69772dbfbcbd5d970d74fcf34f53f
Size

307KB
Sample

220910-s4vr7aacf8
MD5

6a1e2ee181587b2dc2f0f1cc59d61079
SHA1

153e5b8b0c569b913458aa9b53135c66feeb7116
SHA256

ba26b5ef3cc270809ec45ffad4aa9dc2f5d69772dbfbcbd5d970d74fcf34f53f
SHA512

cb3a240afdc3be1916cbe8b57f8e8468ef9117a128a1e23bb6dcccf50555ede2b8186c0c82daff224eedf28dfb3096567e8fe4d314e8e376bf9bcfaa0c0d4710
SSDEEP

6144:l5F/qcX7PGNWJRjOcsam0/EbFzjdzQUMK+nTlJYuWCRxoDZ4d:lrqcXuWrXsBAEbFzjeZKwYuWCXdd

Score

10^/10

smokeloader backdoor trojan

Static task

static1

Behavioral task

behavioral1

Sample

ba26b5ef3cc270809ec45ffad4aa9dc2f5d69772dbfbcbd5d970d74fcf34f53f.exe

Resource

win10-20220901-en

smokeloader backdoor trojan

windows10-1703-x64

10 signatures

150 seconds

Malware Config

Targets

- Target
  
  ba26b5ef3cc270809ec45ffad4aa9dc2f5d69772dbfbcbd5d970d74fcf34f53f
- Size
  
  307KB
- MD5
  
  6a1e2ee181587b2dc2f0f1cc59d61079
- SHA1
  
  153e5b8b0c569b913458aa9b53135c66feeb7116
- SHA256
  
  ba26b5ef3cc270809ec45ffad4aa9dc2f5d69772dbfbcbd5d970d74fcf34f53f
- SHA512
  
  cb3a240afdc3be1916cbe8b57f8e8468ef9117a128a1e23bb6dcccf50555ede2b8186c0c82daff224eedf28dfb3096567e8fe4d314e8e376bf9bcfaa0c0d4710
- SSDEEP
  
  6144:l5F/qcX7PGNWJRjOcsam0/EbFzjdzQUMK+nTlJYuWCRxoDZ4d:lrqcXuWrXsBAEbFzjeZKwYuWCXdd
Score

10^/10

smokeloader backdoor trojan
- Detects Smokeloader packer
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
- Deletes itself
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

smokeloaderbackdoortrojan

© 2018-2025

Terms | Privacy