smokeloader | ee43d7905e6761b168955f4cb672af00f7e0a1506f2baa5fb8170836ef5c82aa | Triage

Sharing

General

Target

file.exe
Size

145KB
Sample

221006-ab15dsgaa5
MD5

e2722c9b78abce4fd7d5979349041b2c
SHA1

3c514162739bad8a9b414cfb401b3715918ddc60
SHA256

ee43d7905e6761b168955f4cb672af00f7e0a1506f2baa5fb8170836ef5c82aa
SHA512

41c9937ca5a0635076737125f636513ce15f5442e0f90be8cb9bf2e4b133dd1b472c945ce497a7231b293c44c4d5d768a286915caca4c38139407450c02dc3fa
SSDEEP

3072:/gUWocfhfbL1TTHyXGB61AwrWQTlnRbdIpoGSJwO:4ewL13yWYAwrWml7IpoGSJw

Score

10^/10

smokeloader backdoor trojan

Malware Config

Targets

- Target
  
  file.exe
- Size
  
  145KB
- MD5
  
  e2722c9b78abce4fd7d5979349041b2c
- SHA1
  
  3c514162739bad8a9b414cfb401b3715918ddc60
- SHA256
  
  ee43d7905e6761b168955f4cb672af00f7e0a1506f2baa5fb8170836ef5c82aa
- SHA512
  
  41c9937ca5a0635076737125f636513ce15f5442e0f90be8cb9bf2e4b133dd1b472c945ce497a7231b293c44c4d5d768a286915caca4c38139407450c02dc3fa
- SSDEEP
  
  3072:/gUWocfhfbL1TTHyXGB61AwrWQTlnRbdIpoGSJwO:4ewL13yWYAwrWml7IpoGSJw
Score

10^/10

smokeloader backdoor trojan
- Detects Smokeloader packer
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

smokeloaderbackdoortrojan

behavioral2