smokeloader | 708d7d560a799f9a5757cec56c31b2418c4482dd08a1533c0f2ec7b2e1257079 | Triage

Submit
Reports

Overview

overview

Static

static

1

file.exe

windows7-x64

file.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

Target

file.exe
Size

196KB
Sample

230209-lghe1sed88
MD5

f7565fefc1fe5ab93fa3cfd1db11b670
SHA1

4e4e99028f92cfe23f168656882424fa12b68e25
SHA256

708d7d560a799f9a5757cec56c31b2418c4482dd08a1533c0f2ec7b2e1257079
SHA512

c8ec933726911efdc55c118a01518cf094193c2782d06d041bb7a2e80934fffd4a7c992d13d78c94cd4d284fa60a513acc04d55ede03fbc48aea150874a042aa
SSDEEP

3072:ySq0OAJciNweKL8JOsW2d5pLdJI5fv1yJBBd+n+t9mg6p0Ee52Pr4:3q0OlFL8AsLLI5n1OFDt/6Fe52z

Score

10^/10

smokeloader backdoor trojan

Static task

static1

Behavioral task

behavioral1

Sample

file.exe

Resource

win7-20220901-en

smokeloader backdoor trojan

windows7-x64

10 signatures

150 seconds

Behavioral task

behavioral2

Sample

file.exe

Resource

win10v2004-20221111-en

smokeloader backdoor trojan

windows10-2004-x64

10 signatures

150 seconds

Malware Config

Targets

- Target
  
  file.exe
- Size
  
  196KB
- MD5
  
  f7565fefc1fe5ab93fa3cfd1db11b670
- SHA1
  
  4e4e99028f92cfe23f168656882424fa12b68e25
- SHA256
  
  708d7d560a799f9a5757cec56c31b2418c4482dd08a1533c0f2ec7b2e1257079
- SHA512
  
  c8ec933726911efdc55c118a01518cf094193c2782d06d041bb7a2e80934fffd4a7c992d13d78c94cd4d284fa60a513acc04d55ede03fbc48aea150874a042aa
- SSDEEP
  
  3072:ySq0OAJciNweKL8JOsW2d5pLdJI5fv1yJBBd+n+t9mg6p0Ee52Pr4:3q0OlFL8AsLLI5n1OFDt/6Fe52z
Score

10^/10

smokeloader backdoor trojan
- Detects Smokeloader packer
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

smokeloaderbackdoortrojan

behavioral2

smokeloaderbackdoortrojan

© 2018-2025

Terms | Privacy