smokeloader | d3a12feea2622c04f5b6e8dc9619aef38e1937ffbc998daba56eae0fb299b0ab | Triage

Sharing

Copy URL Twitter E-mail

General

Target

file.exe
Size

129KB
Sample

220926-xzcg9schfp
MD5

aaad2400aaa4544edf9ea75c189a3c55
SHA1

bdc023a1fcbe414c255e855832c3a68c1f6bb9f2
SHA256

d3a12feea2622c04f5b6e8dc9619aef38e1937ffbc998daba56eae0fb299b0ab
SHA512

526d10a5807e7bdcaff3175dba0e7b29b84038f281ed837f0f2cd1835c938d4b2eb819374bd7f09c1511132439eeb3b88dd8314c0282af6433d84baebd5a1dfa
SSDEEP

3072:tgp0T55r4KL8Tliv7ZLmBj+j9GSjyneRqdhvU5B:yO4QuW7Us5GYRsN

Score

10^/10

smokeloader backdoor trojan

Malware Config

Targets

- Target
  
  file.exe
- Size
  
  129KB
- MD5
  
  aaad2400aaa4544edf9ea75c189a3c55
- SHA1
  
  bdc023a1fcbe414c255e855832c3a68c1f6bb9f2
- SHA256
  
  d3a12feea2622c04f5b6e8dc9619aef38e1937ffbc998daba56eae0fb299b0ab
- SHA512
  
  526d10a5807e7bdcaff3175dba0e7b29b84038f281ed837f0f2cd1835c938d4b2eb819374bd7f09c1511132439eeb3b88dd8314c0282af6433d84baebd5a1dfa
- SSDEEP
  
  3072:tgp0T55r4KL8Tliv7ZLmBj+j9GSjyneRqdhvU5B:yO4QuW7Us5GYRsN
Score

10^/10

smokeloader backdoor trojan
- Detects Smokeloader packer
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

smokeloaderbackdoortrojan

behavioral2

smokeloaderbackdoortrojan