smokeloader | 6b522d17f1210820e2fce6253889561a7f980db205e441572f167ce4536ce588 | Triage

Submit
Reports

Overview

overview

Static

static

3be75e845b...cd.exe

windows7-x64

3be75e845b...cd.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

Target

33efdc024c1ae71c40317f555dffe259.bin
Size

131KB
Sample

230130-wyfmvsda7s
MD5

d51f339a2dc9fd10a61e0ad88a4a597d
SHA1

792417b8598393c7c41944ae936e7ae4b3b7d9c4
SHA256

6b522d17f1210820e2fce6253889561a7f980db205e441572f167ce4536ce588
SHA512

0aa6dd317118bdfd55980de8c59f1cff3c9fb9d6ecd578e8a72c253998119f48073fa4d223ec9399e1540e57859cecd3a0ebd94613d372bf3b5a99c4ea4fce4b
SSDEEP

3072:3M6+eVfsApqASvOs+dMxHVFyGA4uFx/TX4RH3Kv6f:3zZpLSvOs+eVFyGaFx/j4Rae

Score

10^/10

smokeloader backdoor trojan

Static task

static1

Behavioral task

behavioral1

Sample

3be75e845b7a1686cffab759d6ce7855080511d084f146967763c4b5ad05e2cd.exe

Resource

win7-20220812-en

smokeloader backdoor trojan

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

3be75e845b7a1686cffab759d6ce7855080511d084f146967763c4b5ad05e2cd.exe

Resource

win10v2004-20221111-en

smokeloader backdoor trojan

windows10-2004-x64

8 signatures

150 seconds

Malware Config

Targets

- Target
  
  3be75e845b7a1686cffab759d6ce7855080511d084f146967763c4b5ad05e2cd.exe
- Size
  
  201KB
- MD5
  
  33efdc024c1ae71c40317f555dffe259
- SHA1
  
  57fa2a7b71d08c8972c1267aeff2eafa04ebfc31
- SHA256
  
  3be75e845b7a1686cffab759d6ce7855080511d084f146967763c4b5ad05e2cd
- SHA512
  
  45c69fc8f206f99b21b6d6fd442d0039a96e086c173dd2ec1f4774676aa4635cb0822e78ab2b694f76628ac81d95f6df7b4f09ebabb7617a823e58cbfeaf7a19
- SSDEEP
  
  6144:mVkLtzGbUx5XuAh6zkWXZTQ+vHdiGFe1XH:5RzmO5X16ZZPdiEGXH
Score

10^/10

smokeloader backdoor trojan
- Detects Smokeloader packer
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

smokeloaderbackdoortrojan

behavioral2

smokeloaderbackdoortrojan

© 2018-2025

Terms | Privacy