smokeloader | 9e3a0b5ab58b5b07be8403b32bffac17f4cc07772250446731b52c1de9cdf3a3 | Triage

Submit
Reports

Overview

overview

Static

static

SecuriteIn...50.exe

windows7-x64

SecuriteIn...50.exe

windows10-2004-x64

Sharing

General

Target

SecuriteInfo.com.Win32.TrojanX-gen.21150.exe
Size

199KB
Sample

220924-js9mjaagd5
MD5

e55383f2ab1f7f8a02089b18ddd3f84d
SHA1

08706b90b1399adb236284857700630544674bb8
SHA256

9e3a0b5ab58b5b07be8403b32bffac17f4cc07772250446731b52c1de9cdf3a3
SHA512

d4e698906d18f8d624065626f5286f3d86ddcaeba9f5bed67eced595ca71af20984532a889b57adeb7e283a70eb68b9c89ccb9adaa0acbb57b3f4bb22afe9c13
SSDEEP

3072:MwsdCt2lWLdvDWb1C85CCcATzqI+M1cptjsXr7ms+qTBVaIB/Pkk4x:MqwWLUbpTz6dmeqT

Score

10^/10

smokeloader backdoor trojan

Static task

static1

Behavioral task

behavioral1

Sample

SecuriteInfo.com.Win32.TrojanX-gen.21150.exe

Resource

win7-20220901-en

smokeloader backdoor trojan

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

SecuriteInfo.com.Win32.TrojanX-gen.21150.exe

Resource

win10v2004-20220812-en

smokeloader backdoor trojan

windows10-2004-x64

8 signatures

150 seconds

Malware Config

Targets

- Target
  
  SecuriteInfo.com.Win32.TrojanX-gen.21150.exe
- Size
  
  199KB
- MD5
  
  e55383f2ab1f7f8a02089b18ddd3f84d
- SHA1
  
  08706b90b1399adb236284857700630544674bb8
- SHA256
  
  9e3a0b5ab58b5b07be8403b32bffac17f4cc07772250446731b52c1de9cdf3a3
- SHA512
  
  d4e698906d18f8d624065626f5286f3d86ddcaeba9f5bed67eced595ca71af20984532a889b57adeb7e283a70eb68b9c89ccb9adaa0acbb57b3f4bb22afe9c13
- SSDEEP
  
  3072:MwsdCt2lWLdvDWb1C85CCcATzqI+M1cptjsXr7ms+qTBVaIB/Pkk4x:MqwWLUbpTz6dmeqT
Score

10^/10

smokeloader backdoor trojan
- Detects Smokeloader packer
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

smokeloaderbackdoortrojan

behavioral2

smokeloaderbackdoortrojan

© 2018-2025

Terms | Privacy