smokeloader | 979ed9301623091a14533cfb3ce0de16cd39ea4bd32ac511bc1aa0ebf439bab4 | Triage

Sharing

General

Target

file.exe
Size

197KB
Sample

220925-bkj3xacfc8
MD5

dc1aa12aca355436492baf33fcad0631
SHA1

cb21786cec9edd73547dc271375f09c2f32f73b4
SHA256

979ed9301623091a14533cfb3ce0de16cd39ea4bd32ac511bc1aa0ebf439bab4
SHA512

fdc7ed5cbbb2d40f9e9c928b7c0b48e11230d157d1412ac34a92014dbef93be5deb75d5f0ef1b873aef44f7f1f201fe1be0503c00bb9284b92817171e1a1213d
SSDEEP

3072:4XBlQsLfAUpRN5f5OHT4aVT27h2e80xUxD5VmR/B6XGd/PkkXx:NsLrpj6B27hv8oUxDQg2

Score

10^/10

smokeloader backdoor trojan

Malware Config

Targets

- Target
  
  file.exe
- Size
  
  197KB
- MD5
  
  dc1aa12aca355436492baf33fcad0631
- SHA1
  
  cb21786cec9edd73547dc271375f09c2f32f73b4
- SHA256
  
  979ed9301623091a14533cfb3ce0de16cd39ea4bd32ac511bc1aa0ebf439bab4
- SHA512
  
  fdc7ed5cbbb2d40f9e9c928b7c0b48e11230d157d1412ac34a92014dbef93be5deb75d5f0ef1b873aef44f7f1f201fe1be0503c00bb9284b92817171e1a1213d
- SSDEEP
  
  3072:4XBlQsLfAUpRN5f5OHT4aVT27h2e80xUxD5VmR/B6XGd/PkkXx:NsLrpj6B27hv8oUxDQg2
Score

10^/10

smokeloader backdoor trojan
- Detects Smokeloader packer
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

smokeloaderbackdoortrojan

behavioral2

smokeloaderbackdoortrojan