smokeloader | 778cecdaf77827f14281b5bab79f6307f99c8d752e62ca5ff69a21d0b4c16edf | Triage

Submit
Reports

Overview

overview

Static

static

565bb1dc1d...2b.exe

windows7-x64

565bb1dc1d...2b.exe

windows10-2004-x64

Sharing

General

Target

565bb1dc1d26d37da99959d486ab0d2b.exe
Size

270KB
Sample

221005-xlxlaafedl
MD5

565bb1dc1d26d37da99959d486ab0d2b
SHA1

39b921ca015fb829df200ec5a24409c66fcd91d5
SHA256

778cecdaf77827f14281b5bab79f6307f99c8d752e62ca5ff69a21d0b4c16edf
SHA512

a1ce09bd0f9227463b8fae2057ad77654500faf2b897cf79eb0b4f211a218f52abc4aa5d5c268a0697d2d64a275a793653124861fac64e05f4ca5a975b8af8cd
SSDEEP

6144:eKXOr3LkNbln5JQ2ZEEu/DIc6Now7uzbgwuHUcmSswVfU+:eN34NRbE9/EUcunnkUcs+

Score

10^/10

smokeloader backdoor trojan

Static task

static1

Behavioral task

behavioral1

Sample

565bb1dc1d26d37da99959d486ab0d2b.exe

Resource

win7-20220812-en

smokeloader backdoor trojan

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

565bb1dc1d26d37da99959d486ab0d2b.exe

Resource

win10v2004-20220812-en

smokeloader backdoor trojan

windows10-2004-x64

8 signatures

150 seconds

Malware Config

Targets

- Target
  
  565bb1dc1d26d37da99959d486ab0d2b.exe
- Size
  
  270KB
- MD5
  
  565bb1dc1d26d37da99959d486ab0d2b
- SHA1
  
  39b921ca015fb829df200ec5a24409c66fcd91d5
- SHA256
  
  778cecdaf77827f14281b5bab79f6307f99c8d752e62ca5ff69a21d0b4c16edf
- SHA512
  
  a1ce09bd0f9227463b8fae2057ad77654500faf2b897cf79eb0b4f211a218f52abc4aa5d5c268a0697d2d64a275a793653124861fac64e05f4ca5a975b8af8cd
- SSDEEP
  
  6144:eKXOr3LkNbln5JQ2ZEEu/DIc6Now7uzbgwuHUcmSswVfU+:eN34NRbE9/EUcunnkUcs+
Score

10^/10

smokeloader backdoor trojan
- Detects Smokeloader packer
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

smokeloaderbackdoortrojan

behavioral2

smokeloaderbackdoortrojan

© 2018-2024

Terms | Privacy