smokeloader | a6865b767ae3d49af1c8dfc25d5ff2fd393320132c5fbf51ea4b64e21ac46373 | Triage

Sharing

General

Target

a6865b767ae3d49af1c8dfc25d5ff2fd393320132c5fbf51ea4b64e21ac46373
Size

169KB
Sample

220923-he96gahchk
MD5

4095df3d2e21afcde49d8ffe9bac1d00
SHA1

83c70094aef9513a5e6cce565bc807bc51c3a11f
SHA256

a6865b767ae3d49af1c8dfc25d5ff2fd393320132c5fbf51ea4b64e21ac46373
SHA512

71caa732dffe2b4b249f62d13b93ff23d729230c6d58a66fdc20d5a6673bcc730f19587c03dd19a002c3b4ae5847cca3298d32ae58588103cb362247c795cda6
SSDEEP

3072:ZceLHipbD5UOtuKe/zsSjpYIS8gRwBYhR/PkW4n:jLHEkKe/zs+YI1gph

Score

10^/10

smokeloader backdoor trojan

Malware Config

Targets

- Target
  
  a6865b767ae3d49af1c8dfc25d5ff2fd393320132c5fbf51ea4b64e21ac46373
- Size
  
  169KB
- MD5
  
  4095df3d2e21afcde49d8ffe9bac1d00
- SHA1
  
  83c70094aef9513a5e6cce565bc807bc51c3a11f
- SHA256
  
  a6865b767ae3d49af1c8dfc25d5ff2fd393320132c5fbf51ea4b64e21ac46373
- SHA512
  
  71caa732dffe2b4b249f62d13b93ff23d729230c6d58a66fdc20d5a6673bcc730f19587c03dd19a002c3b4ae5847cca3298d32ae58588103cb362247c795cda6
- SSDEEP
  
  3072:ZceLHipbD5UOtuKe/zsSjpYIS8gRwBYhR/PkW4n:jLHEkKe/zs+YI1gph
Score

10^/10

smokeloader backdoor trojan
- Detects Smokeloader packer
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

smokeloaderbackdoortrojan