smokeloader | bf9d78f4666b7c7f4fd29634ca53fe9202ebcfc3a2bfc6eb9d4b0b4dcbb3874d | Triage

Sharing

General

Target

file.exe
Size

145KB
Sample

221006-cnz4zagdan
MD5

c691f496f6cee823325e5f0a76ef47dc
SHA1

382c62254eff1af0d48ce7e2dda5df74cf23b6c1
SHA256

bf9d78f4666b7c7f4fd29634ca53fe9202ebcfc3a2bfc6eb9d4b0b4dcbb3874d
SHA512

1c161a372fbbbaf367448e7fbac32ccd41a14210a3f0b7870d70333ad4497b9abb7c31d73d17f5ad0f13feb735456648ee7daf5de794a2c2e77cf8141da90b1b
SSDEEP

1536:261Nmp9PQ6xJiBhf/Ekmf1sPbg3BMuK25Sf3oPoGKTs5+jlMD9E5c0yNm/Oi:261NkL2hf/OsDgRMXi43t45U89KmgO

Score

10^/10

smokeloader backdoor trojan

Malware Config

Targets

- Target
  
  file.exe
- Size
  
  145KB
- MD5
  
  c691f496f6cee823325e5f0a76ef47dc
- SHA1
  
  382c62254eff1af0d48ce7e2dda5df74cf23b6c1
- SHA256
  
  bf9d78f4666b7c7f4fd29634ca53fe9202ebcfc3a2bfc6eb9d4b0b4dcbb3874d
- SHA512
  
  1c161a372fbbbaf367448e7fbac32ccd41a14210a3f0b7870d70333ad4497b9abb7c31d73d17f5ad0f13feb735456648ee7daf5de794a2c2e77cf8141da90b1b
- SSDEEP
  
  1536:261Nmp9PQ6xJiBhf/Ekmf1sPbg3BMuK25Sf3oPoGKTs5+jlMD9E5c0yNm/Oi:261NkL2hf/OsDgRMXi43t45U89KmgO
Score

10^/10

smokeloader backdoor trojan
- Detects Smokeloader packer
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

smokeloaderbackdoortrojan

behavioral2

smokeloaderbackdoortrojan