smokeloader | efd62aee4bc21f4a993ba4da7b4d57ac637259a573c7ebbca18af31a3d7c4f7b | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

dridex

windows10-2004-x64

Sharing

General

Target

efd62aee4bc21f4a993ba4da7b4d57ac637259a573c7ebbca18af31a3d7c4f7b
Size

218KB
Sample

221026-1glj1ahbf9
MD5

bac8cfed019f44e5a79a386b29303c2b
SHA1

30d13bc1ddca32d7619463a4ab7dcbf18a283d9f
SHA256

efd62aee4bc21f4a993ba4da7b4d57ac637259a573c7ebbca18af31a3d7c4f7b
SHA512

43c0712ea3bc4a27b2ba0ccd7b80db62f3288b8f8c7459c08c6f819b83dc1dc4024038284a285d936493cc06e4944da199b295c6866155b11209edb1a676073b
SSDEEP

3072:kaLJ4GIPm2ql3gIRLHtm6VZvbn59D57Rt3GmdWr+3qL/JcnWzzYYhx:kaE+2+QmLHtmWZvbpX9OfLxaSth

Score

10^/10

smokeloader backdoor trojan

Static task

static1

Behavioral task

behavioral1

Sample

efd62aee4bc21f4a993ba4da7b4d57ac637259a573c7ebbca18af31a3d7c4f7b.exe

Resource

win10v2004-20220812-en

smokeloader backdoor trojan

windows10-2004-x64

8 signatures

150 seconds

Malware Config

Targets

- Target
  
  efd62aee4bc21f4a993ba4da7b4d57ac637259a573c7ebbca18af31a3d7c4f7b
- Size
  
  218KB
- MD5
  
  bac8cfed019f44e5a79a386b29303c2b
- SHA1
  
  30d13bc1ddca32d7619463a4ab7dcbf18a283d9f
- SHA256
  
  efd62aee4bc21f4a993ba4da7b4d57ac637259a573c7ebbca18af31a3d7c4f7b
- SHA512
  
  43c0712ea3bc4a27b2ba0ccd7b80db62f3288b8f8c7459c08c6f819b83dc1dc4024038284a285d936493cc06e4944da199b295c6866155b11209edb1a676073b
- SSDEEP
  
  3072:kaLJ4GIPm2ql3gIRLHtm6VZvbn59D57Rt3GmdWr+3qL/JcnWzzYYhx:kaE+2+QmLHtmWZvbpX9OfLxaSth
Score

10^/10

smokeloader backdoor trojan
- Detects Smokeloader packer
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

smokeloaderbackdoortrojan

© 2018-2025

Terms | Privacy