smokeloader | e182126015704865dd70de87484fdb14d053ae36b928f190b63321cd598fefe9 | Triage

Submit
Reports

Overview

overview

Static

static

file.exe

windows7-x64

file.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

Target

file.exe
Size

283KB
Sample

230113-g4xe8seg85
MD5

4b5289ecf8ab775abb7daa46a2f25cf9
SHA1

d15665c40f46de61376f8d7c3103ccf6703e99eb
SHA256

e182126015704865dd70de87484fdb14d053ae36b928f190b63321cd598fefe9
SHA512

07f1d5916aafce5a4e321bbb6ffad33eff406dfffc2e01c5703881096b120bd975d489106515275d568ca8da9699049ee7d43db2a39214af8f8e31a017213fee
SSDEEP

6144:48YL3MalX/W3HcL+oDa3vuZzxEmXCgyGbACJ:48YDMalXEHcGmZznSBC

Score

10^/10

smokeloader backdoor trojan

Static task

static1

Behavioral task

behavioral1

Sample

file.exe

Resource

win7-20220812-en

smokeloader backdoor trojan

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

file.exe

Resource

win10v2004-20221111-en

smokeloader backdoor trojan

windows10-2004-x64

9 signatures

150 seconds

Malware Config

Targets

- Target
  
  file.exe
- Size
  
  283KB
- MD5
  
  4b5289ecf8ab775abb7daa46a2f25cf9
- SHA1
  
  d15665c40f46de61376f8d7c3103ccf6703e99eb
- SHA256
  
  e182126015704865dd70de87484fdb14d053ae36b928f190b63321cd598fefe9
- SHA512
  
  07f1d5916aafce5a4e321bbb6ffad33eff406dfffc2e01c5703881096b120bd975d489106515275d568ca8da9699049ee7d43db2a39214af8f8e31a017213fee
- SSDEEP
  
  6144:48YL3MalX/W3HcL+oDa3vuZzxEmXCgyGbACJ:48YDMalXEHcGmZznSBC
Score

10^/10

smokeloader backdoor trojan
- Detects Smokeloader packer
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

smokeloaderbackdoortrojan

behavioral2

smokeloaderbackdoortrojan

© 2018-2025

Terms | Privacy