smokeloader | 9352b0d1bff99a32d1e26520ef8677f6f0c75e6a1be486c89d0edf81374a1543 | Triage

Submit
Reports

Overview

overview

Static

static

cc68320d13...8e.exe

windows7-x64

cc68320d13...8e.exe

windows10-2004-x64

Sharing

General

Target

cc68320d13c18281885abe22093da8e26988fabef3944eaf23f0e5190e35f18e
Size

127KB
Sample

221123-x24pjabg4y
MD5

f551ae305c9f7b4242447c68d5cbadfc
SHA1

b12a9448836831fdf2007268cfc961fddc36cdc1
SHA256

9352b0d1bff99a32d1e26520ef8677f6f0c75e6a1be486c89d0edf81374a1543
SHA512

2c1318828d8d7570311afa2b7ceb851e883b38759e810338c8ea9e85f96dfb092bed50632c06e4fe5af104606d7896ad78ffcdbaf74014349ddc7075637a3f9a
SSDEEP

1536:r/7tNqzF41sdj/+mDYUPmwBeXWrgKreh1kbbFu4U37g9D96Z88GnJn4UmFIs1eb+:uzF5z8rndhebbFBUa9ActXTZ+wrHZc++

Score

10^/10

smokeloader backdoor trojan

Static task

static1

Behavioral task

behavioral1

Sample

cc68320d13c18281885abe22093da8e26988fabef3944eaf23f0e5190e35f18e.exe

Resource

win7-20220901-en

smokeloader backdoor trojan

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

cc68320d13c18281885abe22093da8e26988fabef3944eaf23f0e5190e35f18e.exe

Resource

win10v2004-20220812-en

smokeloader backdoor trojan

windows10-2004-x64

8 signatures

150 seconds

Malware Config

Targets

- Target
  
  cc68320d13c18281885abe22093da8e26988fabef3944eaf23f0e5190e35f18e
- Size
  
  186KB
- MD5
  
  ccd4108cd3fde1c5a179440ccd5c295b
- SHA1
  
  f00053c6c8caf5e68ce7c61ca1382061323b4eee
- SHA256
  
  cc68320d13c18281885abe22093da8e26988fabef3944eaf23f0e5190e35f18e
- SHA512
  
  d99a2eba305a9cae569b74cb0c2e922ee610372c2760d4b4ce7e92f01603ef0d88f6ea6eeaba786a54f95f93da384ab7959bed2c9aea834b9e9f325403b4eacd
- SSDEEP
  
  3072:suuRhrDdLwLXAWbHo56eVnAhf4tXTZ+wruAd8:XuNLwLXA4CAhf4Ztru2
Score

10^/10

smokeloader backdoor trojan
- Detects Smokeloader packer
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

smokeloaderbackdoortrojan

behavioral2

smokeloaderbackdoortrojan

© 2018-2025

Terms | Privacy