smokeloader | ebdebba349aba676e9739df18c503ab8c16c7fa1b853fd183f0a005c0e4f68ae | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

ebdebba349...ae.exe

windows7-x64

ebdebba349...ae.exe

windows10-2004-x64

Sharing

General

Target

ebdebba349aba676e9739df18c503ab8c16c7fa1b853fd183f0a005c0e4f68ae
Size

243KB
Sample

221004-v7a83acaar
MD5

fbf436cc098c1ce16f1d35927f3a1d52
SHA1

daf887fb5c01a259c6a9fd79e35dc2da7269aabd
SHA256

ebdebba349aba676e9739df18c503ab8c16c7fa1b853fd183f0a005c0e4f68ae
SHA512

171ce16920b8b250d96a4cfdfefb5a5e7d3fc17ca677a7328f9d910a1e7a820e7e286597bf7a4b6cc1ca02e0166335ea1b5b42526a65df00cad3e93fe252cce4
SSDEEP

1536:rTqzO8/IR2l52sdMBtF07BFhdkkpNh3NgSARDpsoCkpdDtU/05U+Np09IX5ax42:r27xissghPHNg2oJZtJ5UOvp32

Score

10^/10

smokeloader backdoor trojan

Static task

static1

Behavioral task

behavioral1

Sample

ebdebba349aba676e9739df18c503ab8c16c7fa1b853fd183f0a005c0e4f68ae.exe

Resource

win7-20220812-en

smokeloader backdoor trojan

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

ebdebba349aba676e9739df18c503ab8c16c7fa1b853fd183f0a005c0e4f68ae.exe

Resource

win10v2004-20220812-en

smokeloader backdoor trojan

windows10-2004-x64

9 signatures

150 seconds

Malware Config

Targets

- Target
  
  ebdebba349aba676e9739df18c503ab8c16c7fa1b853fd183f0a005c0e4f68ae
- Size
  
  243KB
- MD5
  
  fbf436cc098c1ce16f1d35927f3a1d52
- SHA1
  
  daf887fb5c01a259c6a9fd79e35dc2da7269aabd
- SHA256
  
  ebdebba349aba676e9739df18c503ab8c16c7fa1b853fd183f0a005c0e4f68ae
- SHA512
  
  171ce16920b8b250d96a4cfdfefb5a5e7d3fc17ca677a7328f9d910a1e7a820e7e286597bf7a4b6cc1ca02e0166335ea1b5b42526a65df00cad3e93fe252cce4
- SSDEEP
  
  1536:rTqzO8/IR2l52sdMBtF07BFhdkkpNh3NgSARDpsoCkpdDtU/05U+Np09IX5ax42:r27xissghPHNg2oJZtJ5UOvp32
Score

10^/10

smokeloader backdoor trojan
- Detects Smokeloader packer
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

smokeloaderbackdoortrojan

behavioral2

smokeloaderbackdoortrojan

© 2018-2025

Terms | Privacy