smokeloader | aa53fb64bb8923ff36b124c52b34c4aba03ed84663ac454df47a9804c931d0dd | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

dridex

windows10-1703-x64

Sharing

General

Target

aa53fb64bb8923ff36b124c52b34c4aba03ed84663ac454df47a9804c931d0dd
Size

281KB
Sample

220922-l8yw3segfk
MD5

5fd0a683b30427a9650a312282f202b8
SHA1

1be34c45456aafe28b4b27210e49d39e3cc3845b
SHA256

aa53fb64bb8923ff36b124c52b34c4aba03ed84663ac454df47a9804c931d0dd
SHA512

5632f7672a848a18ac0ae1cd7ebf2b290e50cb67af7412016fba7e0fd6b24337ac3c593803a362d64a24fb7cf44e9030e8177c0380537b1ac7c19cc3bc17a55a
SSDEEP

6144:PFvTab20OhwFj/i6OlNLx8OG8Qr3b03YuxyigavwVf:PFvTnAFj/i6OzLx86QE33x3

Score

10^/10

smokeloader backdoor trojan

Static task

static1

Behavioral task

behavioral1

Sample

aa53fb64bb8923ff36b124c52b34c4aba03ed84663ac454df47a9804c931d0dd.exe

Resource

win10-20220812-en

smokeloader backdoor trojan

windows10-1703-x64

9 signatures

150 seconds

Malware Config

Targets

- Target
  
  aa53fb64bb8923ff36b124c52b34c4aba03ed84663ac454df47a9804c931d0dd
- Size
  
  281KB
- MD5
  
  5fd0a683b30427a9650a312282f202b8
- SHA1
  
  1be34c45456aafe28b4b27210e49d39e3cc3845b
- SHA256
  
  aa53fb64bb8923ff36b124c52b34c4aba03ed84663ac454df47a9804c931d0dd
- SHA512
  
  5632f7672a848a18ac0ae1cd7ebf2b290e50cb67af7412016fba7e0fd6b24337ac3c593803a362d64a24fb7cf44e9030e8177c0380537b1ac7c19cc3bc17a55a
- SSDEEP
  
  6144:PFvTab20OhwFj/i6OlNLx8OG8Qr3b03YuxyigavwVf:PFvTnAFj/i6OzLx86QE33x3
Score

10^/10

smokeloader backdoor trojan
- Detects Smokeloader packer
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
- Deletes itself
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

smokeloaderbackdoortrojan

© 2018-2025

Terms | Privacy