smokeloader | bc45a3a498bf49b25198244ae05b0034489431173b83041ee73075406305bee4 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

file.exe

windows7-x64

file.exe

windows10-2004-x64

Sharing

General

Target

file.exe
Size

288KB
Sample

221231-jdhv9sce81
MD5

bac76068902d69b4272fc1603ef3d90a
SHA1

a08f2e4afa8db340a642f5bf9dc6cb1ca54fdab4
SHA256

bc45a3a498bf49b25198244ae05b0034489431173b83041ee73075406305bee4
SHA512

7be8f03ad73785905edf71379832727ad454ee65991b0990257613cfcc0004991fee99c4302b0c4df8234346081db225aa7d251389d1b0f013967e23da4b5108
SSDEEP

3072:QVS6WP96HLLrXBOobQtRMqNhp8k5wtzh9ITSmdGOgLqI6v+8U9SkEqwi:7zPErL1OobQjNokyv/GU628UIkEq

Score

10^/10

smokeloader backdoor trojan

Static task

static1

Behavioral task

behavioral1

Sample

file.exe

Resource

win7-20221111-en

smokeloader backdoor trojan

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

file.exe

Resource

win10v2004-20221111-en

smokeloader backdoor trojan

windows10-2004-x64

8 signatures

150 seconds

Malware Config

Targets

- Target
  
  file.exe
- Size
  
  288KB
- MD5
  
  bac76068902d69b4272fc1603ef3d90a
- SHA1
  
  a08f2e4afa8db340a642f5bf9dc6cb1ca54fdab4
- SHA256
  
  bc45a3a498bf49b25198244ae05b0034489431173b83041ee73075406305bee4
- SHA512
  
  7be8f03ad73785905edf71379832727ad454ee65991b0990257613cfcc0004991fee99c4302b0c4df8234346081db225aa7d251389d1b0f013967e23da4b5108
- SSDEEP
  
  3072:QVS6WP96HLLrXBOobQtRMqNhp8k5wtzh9ITSmdGOgLqI6v+8U9SkEqwi:7zPErL1OobQjNokyv/GU628UIkEq
Score

10^/10

smokeloader backdoor trojan
- Detects Smokeloader packer
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

smokeloaderbackdoortrojan

behavioral2

smokeloaderbackdoortrojan

© 2018-2025

Terms | Privacy