smokeloader | b8f204e631a5a4fa4244878060cd249a63df9fbbc2ad8b8e01b0936b943cbd4a | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

dridex

windows10-1703-x64

Sharing

General

Target

b8f204e631a5a4fa4244878060cd249a63df9fbbc2ad8b8e01b0936b943cbd4a
Size

327KB
Sample

230110-e6b6zacd64
MD5

3ca36972593202bb097af631b2e5ddec
SHA1

31d8a1cb4d7fe1edccf3f10a97751a6c9c1062bc
SHA256

b8f204e631a5a4fa4244878060cd249a63df9fbbc2ad8b8e01b0936b943cbd4a
SHA512

0c6326f349c988047f13a8ec617e0a8dcfedd5811988c4ee0743c65a01e832140065ae3b71b7a2099310f4e6c63a1be5620821be52221a1270a368c297cfb021
SSDEEP

6144:EABZ5fwEY3NZE/AYcIsn8ZoAT2xreZ7dBA0Xzf8JY:Ek1nYdZVtznjAsrezD8

Score

10^/10

smokeloader backdoor trojan

Static task

static1

Behavioral task

behavioral1

Sample

b8f204e631a5a4fa4244878060cd249a63df9fbbc2ad8b8e01b0936b943cbd4a.exe

Resource

win10-20220901-en

smokeloader backdoor trojan

windows10-1703-x64

9 signatures

150 seconds

Malware Config

Targets

- Target
  
  b8f204e631a5a4fa4244878060cd249a63df9fbbc2ad8b8e01b0936b943cbd4a
- Size
  
  327KB
- MD5
  
  3ca36972593202bb097af631b2e5ddec
- SHA1
  
  31d8a1cb4d7fe1edccf3f10a97751a6c9c1062bc
- SHA256
  
  b8f204e631a5a4fa4244878060cd249a63df9fbbc2ad8b8e01b0936b943cbd4a
- SHA512
  
  0c6326f349c988047f13a8ec617e0a8dcfedd5811988c4ee0743c65a01e832140065ae3b71b7a2099310f4e6c63a1be5620821be52221a1270a368c297cfb021
- SSDEEP
  
  6144:EABZ5fwEY3NZE/AYcIsn8ZoAT2xreZ7dBA0Xzf8JY:Ek1nYdZVtznjAsrezD8
Score

10^/10

smokeloader backdoor trojan
- Detects Smokeloader packer
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
- Deletes itself
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

smokeloaderbackdoortrojan

© 2018-2025

Terms | Privacy