Overview

overview

10

Static

static

file.exe

windows7-x64

10

file.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    file.exe

  • Size

    328KB

  • Sample

    220927-tmdb9adhb8

  • MD5

    bf757ec2ff3e99200672c66c0a603f17

  • SHA1

    92e62746b6bf1eb8a036556ac89d0117ed00d247

  • SHA256

    8473b23f202dbfe94909ec6efd6087878ce735cc5a7f5dd76ec50db62a60482e

  • SHA512

    03593e1060308d1c5b2265b1a24445b257e63c5262fd5f35eb61025a27fc620505b8c0c0fb28db9928e30bdad10ea044e3bfa60da42ceb71643055657b07bf54

  • SSDEEP

    6144:xWsMDHP9B0qcC4gcMl1cl3r06TnigabwVfs:xWsY9BSgxjIiB

Score
10/10
smokeloaderbackdoortrojan

Malware Config

Targets

    • Target

      file.exe

    • Size

      328KB

    • MD5

      bf757ec2ff3e99200672c66c0a603f17

    • SHA1

      92e62746b6bf1eb8a036556ac89d0117ed00d247

    • SHA256

      8473b23f202dbfe94909ec6efd6087878ce735cc5a7f5dd76ec50db62a60482e

    • SHA512

      03593e1060308d1c5b2265b1a24445b257e63c5262fd5f35eb61025a27fc620505b8c0c0fb28db9928e30bdad10ea044e3bfa60da42ceb71643055657b07bf54

    • SSDEEP

      6144:xWsMDHP9B0qcC4gcMl1cl3r06TnigabwVfs:xWsY9BSgxjIiB

    Score
    10/10
    smokeloaderbackdoortrojan

    • Detects Smokeloader packer

    • SmokeLoader

      Modular backdoor trojan in use since 2014.

      trojanbackdoorsmokeloader

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks