smokeloader | 605a0b657a727788d15b53f3cdb81de5861b50b41c23f5a36ee12d5493899422 | Triage

Sharing

General

Target

file.exe
Size

145KB
Sample

221006-chvbjagba5
MD5

3c5df293099bedc4db962146a72851e0
SHA1

08ab9f6253343e9214d6e4769f3e370340f36fe1
SHA256

605a0b657a727788d15b53f3cdb81de5861b50b41c23f5a36ee12d5493899422
SHA512

5a4786d2fb83257d463a438ebdb34a5b5fe58a41f5910a1b90bd24ee58eb82cc090e8ffc151b1cd1065b22408abbc34ed538c8656efc2ca0eb5c448bfe8eff46
SSDEEP

3072:uAa3cFyhfr5xQECucMkM/F4beXYPQtx0Im/O:Fns5xQENcMkM/W6XY6Pw

Score

10^/10

smokeloader backdoor trojan

Malware Config

Targets

- Target
  
  file.exe
- Size
  
  145KB
- MD5
  
  3c5df293099bedc4db962146a72851e0
- SHA1
  
  08ab9f6253343e9214d6e4769f3e370340f36fe1
- SHA256
  
  605a0b657a727788d15b53f3cdb81de5861b50b41c23f5a36ee12d5493899422
- SHA512
  
  5a4786d2fb83257d463a438ebdb34a5b5fe58a41f5910a1b90bd24ee58eb82cc090e8ffc151b1cd1065b22408abbc34ed538c8656efc2ca0eb5c448bfe8eff46
- SSDEEP
  
  3072:uAa3cFyhfr5xQECucMkM/F4beXYPQtx0Im/O:Fns5xQENcMkM/W6XY6Pw
Score

10^/10

smokeloader backdoor trojan
- Detects Smokeloader packer
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

smokeloaderbackdoortrojan

behavioral2

smokeloaderbackdoortrojan