smokeloader | 26320a82595369f49e3621733ea5867ab5ab65a2db9b13687939361c26067712 | Triage

Submit
Reports

Overview

overview

Static

static

a808daaf31...3b.exe

windows7-x64

a808daaf31...3b.exe

windows10-2004-x64

Sharing

General

Target

a808daaf315ca479ffde8d37dce18e3b.exe
Size

268KB
Sample

220918-x2m2sabfd3
MD5

a808daaf315ca479ffde8d37dce18e3b
SHA1

bb8a0894116c0d027a35aff79bd2bb217d7ccd77
SHA256

26320a82595369f49e3621733ea5867ab5ab65a2db9b13687939361c26067712
SHA512

2cafa79a558f283b513d252a57979e68694542adf666f64b291324236e7f0c1d8c0f05e3d391ad372d78e57cddbe3f126ce5d707644f7e1cac009bc3fb78a88b
SSDEEP

6144:s34eBLYy8pHKgM/BypH9Vf6iW06OigavwVfb:4tEy8VKgGaV7I

Score

10^/10

smokeloader backdoor trojan

Static task

static1

Behavioral task

behavioral1

Sample

a808daaf315ca479ffde8d37dce18e3b.exe

Resource

win7-20220901-en

smokeloader backdoor trojan

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

a808daaf315ca479ffde8d37dce18e3b.exe

Resource

win10v2004-20220812-en

smokeloader backdoor trojan

windows10-2004-x64

8 signatures

150 seconds

Malware Config

Targets

- Target
  
  a808daaf315ca479ffde8d37dce18e3b.exe
- Size
  
  268KB
- MD5
  
  a808daaf315ca479ffde8d37dce18e3b
- SHA1
  
  bb8a0894116c0d027a35aff79bd2bb217d7ccd77
- SHA256
  
  26320a82595369f49e3621733ea5867ab5ab65a2db9b13687939361c26067712
- SHA512
  
  2cafa79a558f283b513d252a57979e68694542adf666f64b291324236e7f0c1d8c0f05e3d391ad372d78e57cddbe3f126ce5d707644f7e1cac009bc3fb78a88b
- SSDEEP
  
  6144:s34eBLYy8pHKgM/BypH9Vf6iW06OigavwVfb:4tEy8VKgGaV7I
Score

10^/10

smokeloader backdoor trojan
- Detects Smokeloader packer
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

smokeloaderbackdoortrojan

behavioral2

smokeloaderbackdoortrojan

© 2018-2025

Terms | Privacy