smokeloader | ed64bb4b89eafe7cbeb4d1a4e9d7e3183f7ef35fd614a08129ba243e136135d9 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

dridex

windows10-2004-x64

Sharing

General

Target

ed64bb4b89eafe7cbeb4d1a4e9d7e3183f7ef35fd614a08129ba243e136135d9
Size

351KB
Sample

221203-wk7t7ace86
MD5

528616b275de5cdcf986ada1b6832098
SHA1

4ec607826d7c7471ecf3a93b7d6ec45b233a10d2
SHA256

ed64bb4b89eafe7cbeb4d1a4e9d7e3183f7ef35fd614a08129ba243e136135d9
SHA512

8b0d6b349945b724bd997ba2ddd72b4c1d8610541bc74931b5caca68493d7503991cb10dd9a516e9958af773ed7eb508434cc1375e15fcfb018955a2adbcf0d9
SSDEEP

6144:8StwMq55QNK+/Z1uCG64nnMW2RqnxphZY:8NdP4bR6MW3xVY

Score

10^/10

smokeloader backdoor trojan

Static task

static1

Behavioral task

behavioral1

Sample

ed64bb4b89eafe7cbeb4d1a4e9d7e3183f7ef35fd614a08129ba243e136135d9.exe

Resource

win10v2004-20220901-en

smokeloader backdoor trojan

windows10-2004-x64

8 signatures

150 seconds

Malware Config

Targets

- Target
  
  ed64bb4b89eafe7cbeb4d1a4e9d7e3183f7ef35fd614a08129ba243e136135d9
- Size
  
  351KB
- MD5
  
  528616b275de5cdcf986ada1b6832098
- SHA1
  
  4ec607826d7c7471ecf3a93b7d6ec45b233a10d2
- SHA256
  
  ed64bb4b89eafe7cbeb4d1a4e9d7e3183f7ef35fd614a08129ba243e136135d9
- SHA512
  
  8b0d6b349945b724bd997ba2ddd72b4c1d8610541bc74931b5caca68493d7503991cb10dd9a516e9958af773ed7eb508434cc1375e15fcfb018955a2adbcf0d9
- SSDEEP
  
  6144:8StwMq55QNK+/Z1uCG64nnMW2RqnxphZY:8NdP4bR6MW3xVY
Score

10^/10

smokeloader backdoor trojan
- Detects Smokeloader packer
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

smokeloaderbackdoortrojan

© 2018-2025

Terms | Privacy