smokeloader | 5a74dad00672bb8f22c6b4fcf9405c11db36c21fff50275d0929fd43012b6cc5 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

dridex

windows10-1703-x64

Sharing

General

Target

5a74dad00672bb8f22c6b4fcf9405c11db36c21fff50275d0929fd43012b6cc5
Size

270KB
Sample

221010-jl7vcsbah5
MD5

8babeee8fa7bd59816c30b16c178ace3
SHA1

4b55c78d9cb314e40a69d5eaf3dd4344e2043a66
SHA256

5a74dad00672bb8f22c6b4fcf9405c11db36c21fff50275d0929fd43012b6cc5
SHA512

f2b1210b5fb74cde103c38d856682223c7562115a9c09f5d45ac34b92ea92ae4928bb551efe93f42a316572a68dead07adcea2b7c664b56aeab613e4bda557e8
SSDEEP

3072:TXhKGGEjgrUURA0O5vc/1xafgN7M4aLj73/2qsnz07PwoWM/h3qpZa9uD6Vdyhki:LztaA0Ld233/2qsz07Pw7rwVfquS

Score

10^/10

smokeloader backdoor trojan

Static task

static1

Behavioral task

behavioral1

Sample

5a74dad00672bb8f22c6b4fcf9405c11db36c21fff50275d0929fd43012b6cc5.exe

Resource

win10-20220812-en

smokeloader backdoor trojan

windows10-1703-x64

9 signatures

150 seconds

Malware Config

Targets

- Target
  
  5a74dad00672bb8f22c6b4fcf9405c11db36c21fff50275d0929fd43012b6cc5
- Size
  
  270KB
- MD5
  
  8babeee8fa7bd59816c30b16c178ace3
- SHA1
  
  4b55c78d9cb314e40a69d5eaf3dd4344e2043a66
- SHA256
  
  5a74dad00672bb8f22c6b4fcf9405c11db36c21fff50275d0929fd43012b6cc5
- SHA512
  
  f2b1210b5fb74cde103c38d856682223c7562115a9c09f5d45ac34b92ea92ae4928bb551efe93f42a316572a68dead07adcea2b7c664b56aeab613e4bda557e8
- SSDEEP
  
  3072:TXhKGGEjgrUURA0O5vc/1xafgN7M4aLj73/2qsnz07PwoWM/h3qpZa9uD6Vdyhki:LztaA0Ld233/2qsz07Pw7rwVfquS
Score

10^/10

smokeloader backdoor trojan
- Detects Smokeloader packer
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
- Deletes itself
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

smokeloaderbackdoortrojan

© 2018-2025

Terms | Privacy