smokeloader | 8b833a65aa211e8c3d50245be670dee1326333c71d8f4d17cf108df28c3f4f9b | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

dridex

windows10-1703-x64

Sharing

General

Target

8b833a65aa211e8c3d50245be670dee1326333c71d8f4d17cf108df28c3f4f9b
Size

225KB
Sample

230201-q4l4yahf56
MD5

19b3bb5e1b49fae5683771a114eb2b54
SHA1

0e090e04a3ec9b4617968193ab43f94f13fc80e1
SHA256

8b833a65aa211e8c3d50245be670dee1326333c71d8f4d17cf108df28c3f4f9b
SHA512

bce104e72a015b4c5ae7aa18f6d50ec1b013184a3a1fc17839e2950e2639be39de8343dba4c701101784b2b56324498a438dec6d7a2f7a1e10223c3aed3f0d63
SSDEEP

6144:xmPx8X8hLNI/n9A93N5Ip0wTuRMbwrPn:xm5FxI/9A9wpFTu+bwrP

Score

10^/10

smokeloader backdoor trojan

Static task

static1

Behavioral task

behavioral1

Sample

8b833a65aa211e8c3d50245be670dee1326333c71d8f4d17cf108df28c3f4f9b.exe

Resource

win10-20220812-en

smokeloader backdoor trojan

windows10-1703-x64

11 signatures

150 seconds

Malware Config

Targets

- Target
  
  8b833a65aa211e8c3d50245be670dee1326333c71d8f4d17cf108df28c3f4f9b
- Size
  
  225KB
- MD5
  
  19b3bb5e1b49fae5683771a114eb2b54
- SHA1
  
  0e090e04a3ec9b4617968193ab43f94f13fc80e1
- SHA256
  
  8b833a65aa211e8c3d50245be670dee1326333c71d8f4d17cf108df28c3f4f9b
- SHA512
  
  bce104e72a015b4c5ae7aa18f6d50ec1b013184a3a1fc17839e2950e2639be39de8343dba4c701101784b2b56324498a438dec6d7a2f7a1e10223c3aed3f0d63
- SSDEEP
  
  6144:xmPx8X8hLNI/n9A93N5Ip0wTuRMbwrPn:xm5FxI/9A9wpFTu+bwrP
Score

10^/10

smokeloader backdoor trojan
- Detects Smokeloader packer
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
- Downloads MZ/PE file
- Executes dropped EXE
- Deletes itself
- Loads dropped DLL
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

smokeloaderbackdoortrojan

© 2018-2025

Terms | Privacy