smokeloader | 5280656180e5d2de75a102392d232e5543070d65b0e649551139dec65b362455 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

dridex

windows10-1703-x64

Sharing

General

Target

5280656180e5d2de75a102392d232e5543070d65b0e649551139dec65b362455
Size

271KB
Sample

220929-brtkxsaefq
MD5

1c1b039422b43c467f6afddbaf576d83
SHA1

36c55bae081563bddb982de6b749a7f7fe3591fe
SHA256

5280656180e5d2de75a102392d232e5543070d65b0e649551139dec65b362455
SHA512

4a1ba46a316f9c77551de6ab379553393b5286c63661a5fe9e0d364868d3a9f92dbef66df59f433e5d9a9225857192a60fc37e2f71d9b6943474596757b9129c
SSDEEP

3072:OXhZudGeGQJ8M+91q5HlWRAPulCDc4p0qdVCmsxkgaBChUpZa9uD6VdyhkgRv4eR:WT5E8f9Cq8cCDcEOTiga3wVfg

Score

10^/10

smokeloader backdoor trojan

Static task

static1

Behavioral task

behavioral1

Sample

5280656180e5d2de75a102392d232e5543070d65b0e649551139dec65b362455.exe

Resource

win10-20220812-en

smokeloader backdoor trojan

windows10-1703-x64

9 signatures

150 seconds

Malware Config

Targets

- Target
  
  5280656180e5d2de75a102392d232e5543070d65b0e649551139dec65b362455
- Size
  
  271KB
- MD5
  
  1c1b039422b43c467f6afddbaf576d83
- SHA1
  
  36c55bae081563bddb982de6b749a7f7fe3591fe
- SHA256
  
  5280656180e5d2de75a102392d232e5543070d65b0e649551139dec65b362455
- SHA512
  
  4a1ba46a316f9c77551de6ab379553393b5286c63661a5fe9e0d364868d3a9f92dbef66df59f433e5d9a9225857192a60fc37e2f71d9b6943474596757b9129c
- SSDEEP
  
  3072:OXhZudGeGQJ8M+91q5HlWRAPulCDc4p0qdVCmsxkgaBChUpZa9uD6VdyhkgRv4eR:WT5E8f9Cq8cCDcEOTiga3wVfg
Score

10^/10

smokeloader backdoor trojan
- Detects Smokeloader packer
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
- Deletes itself
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

smokeloaderbackdoortrojan

© 2018-2025

Terms | Privacy