smokeloader | b1e03292d6b0b61ec980e0d46acda67180566f6712bdf9f5339510d9550f8d8a | Triage

Submit
Reports

Overview

overview

Static

static

62c23706dd...19.exe

windows7-x64

62c23706dd...19.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

Target

e404df6ac1484f13a54013b45ef6f7bb.bin
Size

131KB
Sample

230130-yk2paaea4v
MD5

f54dc1d7b5a456a6863119dd5a91d2bc
SHA1

fc480d166ce729de26d5dc6e1c7949579c421ae1
SHA256

b1e03292d6b0b61ec980e0d46acda67180566f6712bdf9f5339510d9550f8d8a
SHA512

d1f91a14e36668ebb441bcf857a96ffae8a7e79f0f6f0526538465c6623da1741f6230071fa1c4c191a2a02377d6a24e2c1d34479364168d313bb95c21905a9f
SSDEEP

3072:RcFyaPPuzuA343a2lF+51j2s/l5jHfZfVqEsdxFfC:RGHuzlh72stdHfZsdxM

Score

10^/10

smokeloader backdoor trojan

Static task

static1

Behavioral task

behavioral1

Sample

62c23706dd4558eeffb03a139602e59ad524f2e204b8bc8a2c72805630930a19.exe

Resource

win7-20221111-en

smokeloader backdoor trojan

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

62c23706dd4558eeffb03a139602e59ad524f2e204b8bc8a2c72805630930a19.exe

Resource

win10v2004-20221111-en

smokeloader backdoor trojan

windows10-2004-x64

8 signatures

150 seconds

Malware Config

Targets

- Target
  
  62c23706dd4558eeffb03a139602e59ad524f2e204b8bc8a2c72805630930a19.exe
- Size
  
  199KB
- MD5
  
  e404df6ac1484f13a54013b45ef6f7bb
- SHA1
  
  060abc01edc2fd55f9a03c94771fcb5cf820f433
- SHA256
  
  62c23706dd4558eeffb03a139602e59ad524f2e204b8bc8a2c72805630930a19
- SHA512
  
  bdf5c952bd6a53330008489d89c7e80bcd3869ec72fc366af25cd77ce5f508912f1a50689c7cc1277e10763cbda2d6698f6933333b78b301ad8c4efbffb6419e
- SSDEEP
  
  3072:pBN2K8gLTgLoryNrUVb6k/5GzeVlkdBCA5RR7x20OA8r6Wj5:vvcLorBVb6kG3571hWj
Score

10^/10

smokeloader backdoor trojan
- Detects Smokeloader packer
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

smokeloaderbackdoortrojan

behavioral2

smokeloaderbackdoortrojan

© 2018-2025

Terms | Privacy