smokeloader | b652a30850ea8253bd4a5c72c9da1cd19e42245467c6789c9d4123188aee4594 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

dridex

windows10-2004-x64

Sharing

General

Target

b652a30850ea8253bd4a5c72c9da1cd19e42245467c6789c9d4123188aee4594
Size

149KB
Sample

221127-ydp2xadc94
MD5

89133b5e7431ed0fe71d82bd9f17f917
SHA1

5fe512cd7bf975fbf87e29607523ddc0f628579e
SHA256

b652a30850ea8253bd4a5c72c9da1cd19e42245467c6789c9d4123188aee4594
SHA512

1603ccff337336190c2b816e1a98ce2852df55d9effe91da1195e3ba7b54d352fca01842b81e8399b95f13faa1917a7008ff2151eec884aaa845e9e1528a3d43
SSDEEP

3072:m2GwqGdpBQ78Pv/3w5WGC8XXiM/D1z+i085Qa:Wkpi8n/BrQyM/l+O2

Score

10^/10

smokeloader backdoor trojan

Static task

static1

Behavioral task

behavioral1

Sample

b652a30850ea8253bd4a5c72c9da1cd19e42245467c6789c9d4123188aee4594.exe

Resource

win10v2004-20221111-en

smokeloader backdoor trojan

windows10-2004-x64

8 signatures

150 seconds

Malware Config

Targets

- Target
  
  b652a30850ea8253bd4a5c72c9da1cd19e42245467c6789c9d4123188aee4594
- Size
  
  149KB
- MD5
  
  89133b5e7431ed0fe71d82bd9f17f917
- SHA1
  
  5fe512cd7bf975fbf87e29607523ddc0f628579e
- SHA256
  
  b652a30850ea8253bd4a5c72c9da1cd19e42245467c6789c9d4123188aee4594
- SHA512
  
  1603ccff337336190c2b816e1a98ce2852df55d9effe91da1195e3ba7b54d352fca01842b81e8399b95f13faa1917a7008ff2151eec884aaa845e9e1528a3d43
- SSDEEP
  
  3072:m2GwqGdpBQ78Pv/3w5WGC8XXiM/D1z+i085Qa:Wkpi8n/BrQyM/l+O2
Score

10^/10

smokeloader backdoor trojan
- Detects Smokeloader packer
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

smokeloaderbackdoortrojan

© 2018-2025

Terms | Privacy