smokeloader | 502de273c0cbf40150fb29d301e7db4c41be90377820ebae230cdd85024820ca | Triage

Sharing

General

Target

502de273c0cbf40150fb29d301e7db4c41be90377820ebae230cdd85024820ca
Size

271KB
Sample

221005-1evd5afga4
MD5

251dfa66c92acc4f7e673ecaf69473e3
SHA1

f7dc8b58c756a4ef42ea1b35eacb7576aaa12a0b
SHA256

502de273c0cbf40150fb29d301e7db4c41be90377820ebae230cdd85024820ca
SHA512

dd71357461e185d61b21d2eb8243b05d6923747b53a285e9d1b4483ee986d892f173d689160e1d19f6bdc71943180b62dac2ffd612f57eba95072372eff5d759
SSDEEP

6144:j8qgaaL8WdeQt5kvxG2RuzbgwurG1VWwVfUPk:j8xIWde0UXunnSG1kc

Score

10^/10

smokeloader backdoor trojan

Malware Config

Targets

- Target
  
  502de273c0cbf40150fb29d301e7db4c41be90377820ebae230cdd85024820ca
- Size
  
  271KB
- MD5
  
  251dfa66c92acc4f7e673ecaf69473e3
- SHA1
  
  f7dc8b58c756a4ef42ea1b35eacb7576aaa12a0b
- SHA256
  
  502de273c0cbf40150fb29d301e7db4c41be90377820ebae230cdd85024820ca
- SHA512
  
  dd71357461e185d61b21d2eb8243b05d6923747b53a285e9d1b4483ee986d892f173d689160e1d19f6bdc71943180b62dac2ffd612f57eba95072372eff5d759
- SSDEEP
  
  6144:j8qgaaL8WdeQt5kvxG2RuzbgwurG1VWwVfUPk:j8xIWde0UXunnSG1kc
Score

10^/10

smokeloader backdoor trojan
- Detects Smokeloader packer
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
- Deletes itself
behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

smokeloaderbackdoortrojan