smokeloader | 7e8642f78b0c91dfcdfca1810b8a624994b21b794834f899f0e150f280621b6f | Triage

Submit
Reports

Overview

overview

Static

static

7e8642f78b...6f.exe

windows7-x64

7e8642f78b...6f.exe

windows10-2004-x64

Sharing

General

Target

7e8642f78b0c91dfcdfca1810b8a624994b21b794834f899f0e150f280621b6f.exe
Size

328KB
Sample

221216-vphv7afb44
MD5

13aeee77ec89e6fbf8179b22b5d57010
SHA1

bc987941646191ff18bea68fdd742541c9ec83bb
SHA256

7e8642f78b0c91dfcdfca1810b8a624994b21b794834f899f0e150f280621b6f
SHA512

7aa55532e3e2017baf3057013753a433946a711dd9ab6c8a720d1c1215ac490dc3456dfe4a0c6d3da846187415199d280e1dff180c738f470f11f0dafdac521e
SSDEEP

6144:cWYDnoLzS0I9RoU2f+k0isvzpQ6ijLxQFiaI:cdo/S01mkxqzpQ6ijqF

Score

10^/10

smokeloader backdoor trojan

Static task

static1

Behavioral task

behavioral1

Sample

7e8642f78b0c91dfcdfca1810b8a624994b21b794834f899f0e150f280621b6f.exe

Resource

win7-20220901-en

smokeloader backdoor trojan

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

7e8642f78b0c91dfcdfca1810b8a624994b21b794834f899f0e150f280621b6f.exe

Resource

win10v2004-20220812-en

smokeloader backdoor trojan

windows10-2004-x64

8 signatures

150 seconds

Malware Config

Targets

- Target
  
  7e8642f78b0c91dfcdfca1810b8a624994b21b794834f899f0e150f280621b6f.exe
- Size
  
  328KB
- MD5
  
  13aeee77ec89e6fbf8179b22b5d57010
- SHA1
  
  bc987941646191ff18bea68fdd742541c9ec83bb
- SHA256
  
  7e8642f78b0c91dfcdfca1810b8a624994b21b794834f899f0e150f280621b6f
- SHA512
  
  7aa55532e3e2017baf3057013753a433946a711dd9ab6c8a720d1c1215ac490dc3456dfe4a0c6d3da846187415199d280e1dff180c738f470f11f0dafdac521e
- SSDEEP
  
  6144:cWYDnoLzS0I9RoU2f+k0isvzpQ6ijLxQFiaI:cdo/S01mkxqzpQ6ijqF
Score

10^/10

smokeloader backdoor trojan
- Detects Smokeloader packer
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

smokeloaderbackdoortrojan

behavioral2

smokeloaderbackdoortrojan

© 2018-2025

Terms | Privacy