smokeloader | b5f88be0b9fd378f3c3dbba5c0190bbf70f5c449c9181ebf9a74414e38cff1be | Triage

Sharing

General

Target

file.exe
Size

186KB
Sample

221123-ha681sdf95
MD5

aa25b5457edde274f66aec71bba519ec
SHA1

752548a897d5f89cffb325cbe452a7df34aa76ef
SHA256

b5f88be0b9fd378f3c3dbba5c0190bbf70f5c449c9181ebf9a74414e38cff1be
SHA512

2767e8291b245a7cc937ba90cb59d0476af0cf34466f365192d89af105b15c37ed6e4c0290f457ef08dc36c70b0867f97214c07903a5bf2009c50ffa79104b4c
SSDEEP

3072:hEm6AUorGL6gL/y+WI5j5zlwrnA+D/s9fkurQ8LqBPemvcqp21Kx:x6zL/y+bEA+L+fDrQ8LqBPeWcq41Kx

Score

10^/10

smokeloader backdoor trojan

Malware Config

Targets

- Target
  
  file.exe
- Size
  
  186KB
- MD5
  
  aa25b5457edde274f66aec71bba519ec
- SHA1
  
  752548a897d5f89cffb325cbe452a7df34aa76ef
- SHA256
  
  b5f88be0b9fd378f3c3dbba5c0190bbf70f5c449c9181ebf9a74414e38cff1be
- SHA512
  
  2767e8291b245a7cc937ba90cb59d0476af0cf34466f365192d89af105b15c37ed6e4c0290f457ef08dc36c70b0867f97214c07903a5bf2009c50ffa79104b4c
- SSDEEP
  
  3072:hEm6AUorGL6gL/y+WI5j5zlwrnA+D/s9fkurQ8LqBPemvcqp21Kx:x6zL/y+bEA+L+fDrQ8LqBPeWcq41Kx
Score

10^/10

smokeloader backdoor trojan
- Detects Smokeloader packer
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

smokeloaderbackdoortrojan

behavioral2

smokeloaderbackdoortrojan