smokeloader | 1da1751a7d92b95aa405f39ff52b944729729d450efda568c6a340aee8373b0a | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

dridex

windows10-1703-x64

Sharing

General

Target

1da1751a7d92b95aa405f39ff52b944729729d450efda568c6a340aee8373b0a
Size

291KB
Sample

220917-ysqlzsebfn
MD5

362101cc9247e703d2fd75f87a38273f
SHA1

d473e1b1f8c46e314321b1766cc2418065fbb6ec
SHA256

1da1751a7d92b95aa405f39ff52b944729729d450efda568c6a340aee8373b0a
SHA512

6b0973fa2c9feb3fe5655ee7df053f849f53a6da0d013104ff472b670156d376f4dd65e305567b3e415c50e0d3ba258a565e099d30396d581bd7c07536fc3180
SSDEEP

3072:WXLDHO0YD67LFw7TCsueg5I1rH2vlg8Bth2dOkOQ0K6wwtgKM/h3BsxkgaBChU/x:+ye7LK7TdRrGTQZOQ03ZnigabwVf+

Score

10^/10

smokeloader backdoor trojan

Static task

static1

Behavioral task

behavioral1

Sample

1da1751a7d92b95aa405f39ff52b944729729d450efda568c6a340aee8373b0a.exe

Resource

win10-20220812-en

smokeloader backdoor trojan

windows10-1703-x64

9 signatures

150 seconds

Malware Config

Targets

- Target
  
  1da1751a7d92b95aa405f39ff52b944729729d450efda568c6a340aee8373b0a
- Size
  
  291KB
- MD5
  
  362101cc9247e703d2fd75f87a38273f
- SHA1
  
  d473e1b1f8c46e314321b1766cc2418065fbb6ec
- SHA256
  
  1da1751a7d92b95aa405f39ff52b944729729d450efda568c6a340aee8373b0a
- SHA512
  
  6b0973fa2c9feb3fe5655ee7df053f849f53a6da0d013104ff472b670156d376f4dd65e305567b3e415c50e0d3ba258a565e099d30396d581bd7c07536fc3180
- SSDEEP
  
  3072:WXLDHO0YD67LFw7TCsueg5I1rH2vlg8Bth2dOkOQ0K6wwtgKM/h3BsxkgaBChU/x:+ye7LK7TdRrGTQZOQ03ZnigabwVf+
Score

10^/10

smokeloader backdoor trojan
- Detects Smokeloader packer
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
- Deletes itself
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

smokeloaderbackdoortrojan

© 2018-2025

Terms | Privacy