smokeloader | 0653d7702a1b3cf1d10363073b4efd3e800dd389c3820a9c6a7bedbccc7d8b25 | Triage

Submit
Reports

Overview

overview

Static

static

6cb7cbc7d6...7b.exe

windows7-x64

6cb7cbc7d6...7b.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

Target

6cb7cbc7d68f9b51264377bb61f4400b1496a416702a9c4c64a2375d71f1137b
Size

193KB
Sample

221203-ze75jsha8s
MD5

c1772ebd8d0102c56a9eb60b9f3fc230
SHA1

4b23192e43416ac66d4415e20043ffb4dd48c3c7
SHA256

0653d7702a1b3cf1d10363073b4efd3e800dd389c3820a9c6a7bedbccc7d8b25
SHA512

6bb8cb71845f0e175b0d4f0b7fc06985d6eff053989458e1e2b7d2f47015a62c49228a021b4ef71943d446126ec4a03a773e65c785a6aa77d54071b5fe84aa39
SSDEEP

6144:a9gjxhjq1S4o+bWzsH4cd+to0tfX01H0I8:aEqBnbIi9N4s0t

Score

10^/10

smokeloader backdoor trojan

Static task

static1

Behavioral task

behavioral1

Sample

6cb7cbc7d68f9b51264377bb61f4400b1496a416702a9c4c64a2375d71f1137b.exe

Resource

win7-20220901-en

smokeloader backdoor trojan

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

6cb7cbc7d68f9b51264377bb61f4400b1496a416702a9c4c64a2375d71f1137b.exe

Resource

win10v2004-20221111-en

smokeloader backdoor trojan

windows10-2004-x64

8 signatures

150 seconds

Malware Config

Targets

- Target
  
  6cb7cbc7d68f9b51264377bb61f4400b1496a416702a9c4c64a2375d71f1137b
- Size
  
  351KB
- MD5
  
  1f0d13e728dfb00f5e6ffd18e3be49e7
- SHA1
  
  5a64122ad5a7cf83c50b068e8c5f074b98833088
- SHA256
  
  6cb7cbc7d68f9b51264377bb61f4400b1496a416702a9c4c64a2375d71f1137b
- SHA512
  
  18773d8bbd10028c0f97d83a4baf6ad92e6b3447ccc3a642f1c182e4fe8cbc8e1f09c389b7d5139351890c2ae5368141e8eb35da00bda63f91495de0ef497ca9
- SSDEEP
  
  6144:J0yDoAGexLnnLeEAVOwshnMW2RqnN65OVY:JvUAG0zLLAyMW3SEY
Score

10^/10

smokeloader backdoor trojan
- Detects Smokeloader packer
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

smokeloaderbackdoortrojan

behavioral2

smokeloaderbackdoortrojan

© 2018-2025

Terms | Privacy