smokeloader | 84af1a50f7c8a1713fb4390ce709609d467176645e4af97ae45c0957b80692e9 | Triage

Submit
Reports

Overview

overview

Static

static

1

110d22f135...e6.exe

windows7-x64

110d22f135...e6.exe

windows10-2004-x64

Sharing

General

Target

110d22f1358521542c59bc7733898ee6.exe
Size

194KB
Sample

230208-w8xdcsec78
MD5

110d22f1358521542c59bc7733898ee6
SHA1

d4618f8d8f2ad6180eb00ee0b6fc2285f276e956
SHA256

84af1a50f7c8a1713fb4390ce709609d467176645e4af97ae45c0957b80692e9
SHA512

98a801f3ff33fa95b73df624d9cff5031ad1c4c76945dd7a01529bd964169c454192a0c1621eb8951d1a2d82d8457ecf763df6b7fc56a5e1b86f345043d15357
SSDEEP

3072:NkrLOC9oLk6ERL1G/W135V0WMds91nspKZpoJu3q4Bq:erLUERLQ/fWMa9BXSJx4

Score

10^/10

smokeloader backdoor trojan

Static task

static1

Behavioral task

behavioral1

Sample

110d22f1358521542c59bc7733898ee6.exe

Resource

win7-20221111-en

smokeloader backdoor trojan

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

110d22f1358521542c59bc7733898ee6.exe

Resource

win10v2004-20221111-en

smokeloader backdoor trojan

windows10-2004-x64

8 signatures

150 seconds

Malware Config

Targets

- Target
  
  110d22f1358521542c59bc7733898ee6.exe
- Size
  
  194KB
- MD5
  
  110d22f1358521542c59bc7733898ee6
- SHA1
  
  d4618f8d8f2ad6180eb00ee0b6fc2285f276e956
- SHA256
  
  84af1a50f7c8a1713fb4390ce709609d467176645e4af97ae45c0957b80692e9
- SHA512
  
  98a801f3ff33fa95b73df624d9cff5031ad1c4c76945dd7a01529bd964169c454192a0c1621eb8951d1a2d82d8457ecf763df6b7fc56a5e1b86f345043d15357
- SSDEEP
  
  3072:NkrLOC9oLk6ERL1G/W135V0WMds91nspKZpoJu3q4Bq:erLUERLQ/fWMa9BXSJx4
Score

10^/10

smokeloader backdoor trojan
- Detects Smokeloader packer
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

smokeloaderbackdoortrojan

behavioral2

smokeloaderbackdoortrojan

© 2018-2025

Terms | Privacy