smokeloader | cc4a1ffe60517c1f7c7ce5ab43f68eed7a4c338356fa306ac1381a3a497932fd | Triage

Submit
Reports

Overview

overview

Static

static

8f336bb833...73.exe

windows7-x64

8f336bb833...73.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

Target

8f336bb833fca86000fba68b38f0bcfee232c32dcff20ebd814513ac393ad273
Size

162KB
Sample

230114-tzqs4sed3t
MD5

6608d5e0f22d450dd801654474e3ff3c
SHA1

38a042dbd99b72b8bfda9ddc3c260744dcc687cc
SHA256

cc4a1ffe60517c1f7c7ce5ab43f68eed7a4c338356fa306ac1381a3a497932fd
SHA512

c63be388b7d43254b3baf43fe16ecfba4a7c0d1229fc7a3f699dd3bbc95703930fd643939675f671b209b2d9096a221c055c6d0b0f8592e095933acf2a08fc08
SSDEEP

3072:j7hH4vjnK8pkdFJIYVpPCddo34QKpOVeEFUKdcAm+IoHkpREhoFVO5oc8+0e:j7hHGnhpexVpqddo3gkVe9WwRxo5oc8o

Score

10^/10

smokeloader backdoor trojan

Static task

static1

Behavioral task

behavioral1

Sample

8f336bb833fca86000fba68b38f0bcfee232c32dcff20ebd814513ac393ad273.exe

Resource

win7-20221111-en

smokeloader backdoor trojan

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

8f336bb833fca86000fba68b38f0bcfee232c32dcff20ebd814513ac393ad273.exe

Resource

win10v2004-20221111-en

smokeloader backdoor trojan

windows10-2004-x64

8 signatures

150 seconds

Malware Config

Targets

- Target
  
  8f336bb833fca86000fba68b38f0bcfee232c32dcff20ebd814513ac393ad273
- Size
  
  261KB
- MD5
  
  6fcf5477ab0733d5857375cefdcfdfbd
- SHA1
  
  6b68a23ebe147659c917bbf5bf91b5d5523ffb33
- SHA256
  
  8f336bb833fca86000fba68b38f0bcfee232c32dcff20ebd814513ac393ad273
- SHA512
  
  4f7262e34259ac4d49f44300a40d6547ab493bdb9559b711f0b4dd46c5093dd61a7add1db7535ce590ecf73dabe077e2d2546f8afe6c9ba1562d7a6432dd69e9
- SSDEEP
  
  3072:AVXmn7/sJ5pcFsxnMoAX+QKpOVeEFUKfx9Uyapb8pBI8jwWRjoV:GsEvxnMQkVeOupgpRjFE
Score

10^/10

smokeloader backdoor trojan
- Detects Smokeloader packer
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

smokeloaderbackdoortrojan

behavioral2

smokeloaderbackdoortrojan

© 2018-2025

Terms | Privacy