smokeloader | e4871ca5dbb69d477177de716f3ebc629ebd7a089810b7c689a887a9f0776885 | Triage

Sharing

General

Target

e4871ca5dbb69d477177de716f3ebc629ebd7a089810b7c689a887a9f0776885
Size

186KB
Sample

221123-h5v48seh88
MD5

5c60e20b49c5e18ef1d0dcc381981d8d
SHA1

fb1f6a807c1528c0ff7a57335eab0a5fb2ef4338
SHA256

e4871ca5dbb69d477177de716f3ebc629ebd7a089810b7c689a887a9f0776885
SHA512

2934b7da7050768301af20892190a0cac1cd4270e9dde64917172e372c06dd2f1e29b329b029570aafd93193df7f6e2351ccbbf4b429c250584eb910ba74d63c
SSDEEP

3072:eBkA2r0cmsoLNtnWodD5iQwJFydSMvLH1f0UJvORBkGm8F5zfzpfIK:xAe0tLNtn7165MBtg4Ezp

Score

10^/10

smokeloader backdoor trojan

Malware Config

Targets

- Target
  
  e4871ca5dbb69d477177de716f3ebc629ebd7a089810b7c689a887a9f0776885
- Size
  
  186KB
- MD5
  
  5c60e20b49c5e18ef1d0dcc381981d8d
- SHA1
  
  fb1f6a807c1528c0ff7a57335eab0a5fb2ef4338
- SHA256
  
  e4871ca5dbb69d477177de716f3ebc629ebd7a089810b7c689a887a9f0776885
- SHA512
  
  2934b7da7050768301af20892190a0cac1cd4270e9dde64917172e372c06dd2f1e29b329b029570aafd93193df7f6e2351ccbbf4b429c250584eb910ba74d63c
- SSDEEP
  
  3072:eBkA2r0cmsoLNtnWodD5iQwJFydSMvLH1f0UJvORBkGm8F5zfzpfIK:xAe0tLNtn7165MBtg4Ezp
Score

10^/10

smokeloader backdoor trojan
- Detects Smokeloader packer
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

smokeloaderbackdoortrojan