smokeloader | 819fbb47cca83bb1101f2618f51fc0c494890a5fcc7a848d78943518926f34b1 | Triage

Submit
Reports

Overview

overview

Static

static

1

9e7f9353ce...22.exe

windows7-x64

9e7f9353ce...22.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

Target

959f089583804485ac51c620ab73ede7.bin
Size

189KB
Sample

230203-kkl2yadc82
MD5

1a7b0ac8591b13b1556338b53e246b46
SHA1

b1ed2cb9e45546432d22177a9ce5ed9847dd43f4
SHA256

819fbb47cca83bb1101f2618f51fc0c494890a5fcc7a848d78943518926f34b1
SHA512

94d61b81b325f6d41d2c0294539abb45bf4ba501d37fee463c8eb18f023ff53b8e09f62b7a9261f3b040fb68e96d7cbb2c1770b0e6d8f1a74e2c4949d01bdb75
SSDEEP

3072:/LXrqCiOFyIzfML1QjUr4YN4nWMfcE7qenLft3tDbwnSZspTjrGTiwaQJi++lbDh:/LblxFQXrZ6nWMP7PLF3t/wnIlaQaN

Score

10^/10

smokeloader backdoor trojan

Static task

static1

Behavioral task

behavioral1

Sample

9e7f9353ce20ec8542a401c7e87b3da83eec6c2c7de2bddf06125b2d7755ac22.exe

Resource

win7-20220812-en

smokeloader backdoor trojan

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

9e7f9353ce20ec8542a401c7e87b3da83eec6c2c7de2bddf06125b2d7755ac22.exe

Resource

win10v2004-20221111-en

smokeloader backdoor trojan

windows10-2004-x64

11 signatures

150 seconds

Malware Config

Targets

- Target
  
  9e7f9353ce20ec8542a401c7e87b3da83eec6c2c7de2bddf06125b2d7755ac22.exe
- Size
  
  296KB
- MD5
  
  959f089583804485ac51c620ab73ede7
- SHA1
  
  5589b592d85a6f67bdcd0ff7c9fb34d8963e0f51
- SHA256
  
  9e7f9353ce20ec8542a401c7e87b3da83eec6c2c7de2bddf06125b2d7755ac22
- SHA512
  
  fb60b52f7f317535aebf2f6e79e730dc20c634c7f9d688c67e160c1e4a912cf196bf7875e5fe76b836836d2d84741a0bdf08ac2230e3f98d663b88bcf44a3119
- SSDEEP
  
  6144:hZNqrLebzcNPhcSQOvL0/HTiLH2mqMoIEL8M:jNyyPcNJZ9geD5qMeL
Score

10^/10

smokeloader backdoor trojan
- Detects Smokeloader packer
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

smokeloaderbackdoortrojan

behavioral2

smokeloaderbackdoortrojan

© 2018-2025

Terms | Privacy