smokeloader | 1d7021756ccaacb34ee59cf131e3b1b3ae688edd103fcef18c60606b5e14b21e | Triage

Submit
Reports

Overview

overview

Static

static

1

file.exe

windows7-x64

file.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

Target

file.exe
Size

198KB
Sample

230212-kmkxnaba4y
MD5

8ad489a8e94d01c15ad78843e0719288
SHA1

d645a57c846b41a8c67e1dbd1e20dd59fc01d5aa
SHA256

1d7021756ccaacb34ee59cf131e3b1b3ae688edd103fcef18c60606b5e14b21e
SHA512

958361ddcbf749021d88564f57816e40168d65b72a3a12688a5e24fc96aeb281eb71e18f3979098885819981d972cd6f74f4eeb5c510132ff728460badff6279
SSDEEP

3072:7jqm4U+0JCiC5CCS6/7RrrZm9Qj2zZ2VCKMJ1bgfhQARR7TJDY:7GGRjb67dlC1bWhQAR5TJD

Score

10^/10

smokeloader backdoor trojan

Static task

static1

Behavioral task

behavioral1

Sample

file.exe

Resource

win7-20221111-en

smokeloader backdoor trojan

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

file.exe

Resource

win10v2004-20221111-en

smokeloader backdoor trojan

windows10-2004-x64

13 signatures

150 seconds

Malware Config

Targets

- Target
  
  file.exe
- Size
  
  198KB
- MD5
  
  8ad489a8e94d01c15ad78843e0719288
- SHA1
  
  d645a57c846b41a8c67e1dbd1e20dd59fc01d5aa
- SHA256
  
  1d7021756ccaacb34ee59cf131e3b1b3ae688edd103fcef18c60606b5e14b21e
- SHA512
  
  958361ddcbf749021d88564f57816e40168d65b72a3a12688a5e24fc96aeb281eb71e18f3979098885819981d972cd6f74f4eeb5c510132ff728460badff6279
- SSDEEP
  
  3072:7jqm4U+0JCiC5CCS6/7RrrZm9Qj2zZ2VCKMJ1bgfhQARR7TJDY:7GGRjb67dlC1bWhQAR5TJD
Score

10^/10

smokeloader backdoor trojan
- Detects Smokeloader packer
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
- Blocklisted process makes network request
- Downloads MZ/PE file
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

smokeloaderbackdoortrojan

behavioral2

smokeloaderbackdoortrojan

© 2018-2025

Terms | Privacy