smokeloader | 606b5179a40b830d209c57548118b89bda1af71441c9a446a568beaa6d83a38c | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

606b5179a4...8c.exe

windows7-x64

1

606b5179a4...8c.exe

windows10-2004-x64

Sharing

General

Target

606b5179a40b830d209c57548118b89bda1af71441c9a446a568beaa6d83a38c
Size

137KB
Sample

221125-lfrx3abe8v
MD5

11c15bcc555195f8e29b35cdb9f4a27b
SHA1

aeee251a75338404c2f181ea34fa7a81b9dc1730
SHA256

606b5179a40b830d209c57548118b89bda1af71441c9a446a568beaa6d83a38c
SHA512

0545edd1a0832746c447d893fa367992051921acec18de075696566244644a3747317dfca0cdc41036166ab50e74b9f3de596d8a7c2be00943fbf1dd78c18a93
SSDEEP

3072:D8dWLdcvNZVaHeaqUPAgQwgYGxx2gckR:D8d++ZVa2U0MGKgc+

Score

10^/10

smokeloader backdoor trojan

Static task

static1

Behavioral task

behavioral1

Sample

606b5179a40b830d209c57548118b89bda1af71441c9a446a568beaa6d83a38c.exe

Resource

win7-20220812-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

606b5179a40b830d209c57548118b89bda1af71441c9a446a568beaa6d83a38c.exe

Resource

win10v2004-20220901-en

smokeloader backdoor trojan

windows10-2004-x64

9 signatures

150 seconds

Malware Config

Targets

- Target
  
  606b5179a40b830d209c57548118b89bda1af71441c9a446a568beaa6d83a38c
- Size
  
  137KB
- MD5
  
  11c15bcc555195f8e29b35cdb9f4a27b
- SHA1
  
  aeee251a75338404c2f181ea34fa7a81b9dc1730
- SHA256
  
  606b5179a40b830d209c57548118b89bda1af71441c9a446a568beaa6d83a38c
- SHA512
  
  0545edd1a0832746c447d893fa367992051921acec18de075696566244644a3747317dfca0cdc41036166ab50e74b9f3de596d8a7c2be00943fbf1dd78c18a93
- SSDEEP
  
  3072:D8dWLdcvNZVaHeaqUPAgQwgYGxx2gckR:D8d++ZVa2U0MGKgc+
Score

10^/10

smokeloader backdoor trojan
- Detects Smokeloader packer
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

smokeloaderbackdoortrojan

© 2018-2025

Terms | Privacy