smokeloader | 77296d3a583ee3f4e6f102ab23f81b0150a187763740c320403e45edf965ce0f | Triage

Sharing

General

Target

77296d3a583ee3f4e6f102ab23f81b0150a187763740c320403e45edf965ce0f
Size

146KB
Sample

221006-ejadvsgeel
MD5

0302f48ae245eaccd7be8c2275898beb
SHA1

4f03495093b294407da47ed722dadba3fc8bce9b
SHA256

77296d3a583ee3f4e6f102ab23f81b0150a187763740c320403e45edf965ce0f
SHA512

1468d28bbbb51304727c8ee2d04edaca37b8abe40525b1339a5e8630a141da2e1cef49becec5c2f5579cad4a376095406518afc6808e09764ba96e8ff693a6bf
SSDEEP

3072:pLkfHJ/ZhfyCEBkVno+m+wSuPMTb7ckH/EwO72zBaO:lApCBkVno+m+w1W8kH/pO7d

Score

10^/10

smokeloader backdoor trojan

Malware Config

Targets

- Target
  
  77296d3a583ee3f4e6f102ab23f81b0150a187763740c320403e45edf965ce0f
- Size
  
  146KB
- MD5
  
  0302f48ae245eaccd7be8c2275898beb
- SHA1
  
  4f03495093b294407da47ed722dadba3fc8bce9b
- SHA256
  
  77296d3a583ee3f4e6f102ab23f81b0150a187763740c320403e45edf965ce0f
- SHA512
  
  1468d28bbbb51304727c8ee2d04edaca37b8abe40525b1339a5e8630a141da2e1cef49becec5c2f5579cad4a376095406518afc6808e09764ba96e8ff693a6bf
- SSDEEP
  
  3072:pLkfHJ/ZhfyCEBkVno+m+wSuPMTb7ckH/EwO72zBaO:lApCBkVno+m+w1W8kH/pO7d
Score

10^/10

smokeloader backdoor trojan
- Detects Smokeloader packer
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
- Executes dropped EXE
- Deletes itself
behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

smokeloaderbackdoortrojan