smokeloader | f69f40cfddbc8569d5760d9bc1c8dced64e8e9d0dedff1cbee7bdae12c8e527e | Triage

Submit
Reports

Overview

overview

Static

static

dridex

windows10_x64

Sharing

General

Target

f69f40cfddbc8569d5760d9bc1c8dced64e8e9d0dedff1cbee7bdae12c8e527e
Size

313KB
Sample

211201-saqalsdahq
MD5

f67bbd2e26e4982c41095061d1b55167
SHA1

258adb6990ec7f415bf42fbf04807fd07be5c1ee
SHA256

f69f40cfddbc8569d5760d9bc1c8dced64e8e9d0dedff1cbee7bdae12c8e527e
SHA512

a089b092121c535d0db8959315233cff3a62732c52b0fb88d673a9ce98e8a5092746355a11b5c20a355c3ce30603879f24589e5d11a601449da5019bd6db63ca

Score

10^/10

smokeloader backdoor collection trojan

Static task

static1

Behavioral task

behavioral1

Sample

f69f40cfddbc8569d5760d9bc1c8dced64e8e9d0dedff1cbee7bdae12c8e527e.exe

Resource

win10-en-20211014

smokeloader backdoor collection trojan

windows10_x64

0 signatures

0 seconds

Malware Config

Extracted

Family

smokeloader

Version

2020

C2

https://cinems.club/search.php

https://clothes.surf/search.php

rc4.i32

rc4.i32

Targets

- Target
  
  f69f40cfddbc8569d5760d9bc1c8dced64e8e9d0dedff1cbee7bdae12c8e527e
- Size
  
  313KB
- MD5
  
  f67bbd2e26e4982c41095061d1b55167
- SHA1
  
  258adb6990ec7f415bf42fbf04807fd07be5c1ee
- SHA256
  
  f69f40cfddbc8569d5760d9bc1c8dced64e8e9d0dedff1cbee7bdae12c8e527e
- SHA512
  
  a089b092121c535d0db8959315233cff3a62732c52b0fb88d673a9ce98e8a5092746355a11b5c20a355c3ce30603879f24589e5d11a601449da5019bd6db63ca
Score

10^/10

smokeloader backdoor collection trojan
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
- Deletes itself
- Accesses Microsoft Outlook profiles
  collection
behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Email Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

smokeloaderbackdoorcollectiontrojan

© 2018-2024

Terms | Privacy