smokeloader | ce294aace226cc1680c0e129596af43c930720056ca84aa8d4d4e8aabd38d574 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

dridex

windows10-2004-x64

Sharing

General

Target

ce294aace226cc1680c0e129596af43c930720056ca84aa8d4d4e8aabd38d574
Size

200KB
Sample

220924-htggpscagl
MD5

1ea42633c17373b7f8f406c6b9d5c3aa
SHA1

38c71989a34c609788815411526a5b432cd5aa45
SHA256

ce294aace226cc1680c0e129596af43c930720056ca84aa8d4d4e8aabd38d574
SHA512

94b04ed845b9e74d9c549eb2ba924f4a6866b9ee43be92c6541c9d43e7a3ac89f71b4f4ef982ac23dc88363c368854b1b5271db80387fd63b1b0ee480be418e4
SSDEEP

3072:TwuHp/TLZ/76o85R4Bd1sIQf1ZZyVAXEa+bd2Bcy/Pkk4x:Tl7Lp6i1spf1HZwd

Score

10^/10

smokeloader backdoor trojan

Static task

static1

Behavioral task

behavioral1

Sample

ce294aace226cc1680c0e129596af43c930720056ca84aa8d4d4e8aabd38d574.exe

Resource

win10v2004-20220812-en

smokeloader backdoor trojan

windows10-2004-x64

8 signatures

150 seconds

Malware Config

Targets

- Target
  
  ce294aace226cc1680c0e129596af43c930720056ca84aa8d4d4e8aabd38d574
- Size
  
  200KB
- MD5
  
  1ea42633c17373b7f8f406c6b9d5c3aa
- SHA1
  
  38c71989a34c609788815411526a5b432cd5aa45
- SHA256
  
  ce294aace226cc1680c0e129596af43c930720056ca84aa8d4d4e8aabd38d574
- SHA512
  
  94b04ed845b9e74d9c549eb2ba924f4a6866b9ee43be92c6541c9d43e7a3ac89f71b4f4ef982ac23dc88363c368854b1b5271db80387fd63b1b0ee480be418e4
- SSDEEP
  
  3072:TwuHp/TLZ/76o85R4Bd1sIQf1ZZyVAXEa+bd2Bcy/Pkk4x:Tl7Lp6i1spf1HZwd
Score

10^/10

smokeloader backdoor trojan
- Detects Smokeloader packer
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

smokeloaderbackdoortrojan

© 2018-2025

Terms | Privacy