smokeloader | 19f0cedb9b68a2722025a2328175ef8726ef6cbc90790c44dddc6c263deb1dc0 | Triage

Sharing

General

Target

19f0cedb9b68a2722025a2328175ef8726ef6cbc90790c44dddc6c263deb1dc0
Size

186KB
Sample

221123-j3aaesbg51
MD5

6bb48134948ad77c616f959b2035376d
SHA1

87ee66e6fc4c722f982c9b496fdf986e91452cfd
SHA256

19f0cedb9b68a2722025a2328175ef8726ef6cbc90790c44dddc6c263deb1dc0
SHA512

3703826605017f26be12eaeadb5a3e86202522f91826500d9d96440ea3fa568704fe849cf484a83afb9ee2a0b45e64425a9e2a1fc59e97b27751d79f4a57106b
SSDEEP

3072:KBkAqUk8d2LiKXWyhD5AsCE7YCwIv7Y7CYRB4FOhO:dAtGLiKXBpaG7YbBqz

Score

10^/10

smokeloader backdoor trojan

Malware Config

Targets

- Target
  
  19f0cedb9b68a2722025a2328175ef8726ef6cbc90790c44dddc6c263deb1dc0
- Size
  
  186KB
- MD5
  
  6bb48134948ad77c616f959b2035376d
- SHA1
  
  87ee66e6fc4c722f982c9b496fdf986e91452cfd
- SHA256
  
  19f0cedb9b68a2722025a2328175ef8726ef6cbc90790c44dddc6c263deb1dc0
- SHA512
  
  3703826605017f26be12eaeadb5a3e86202522f91826500d9d96440ea3fa568704fe849cf484a83afb9ee2a0b45e64425a9e2a1fc59e97b27751d79f4a57106b
- SSDEEP
  
  3072:KBkAqUk8d2LiKXWyhD5AsCE7YCwIv7Y7CYRB4FOhO:dAtGLiKXBpaG7YbBqz
Score

10^/10

smokeloader backdoor trojan
- Detects Smokeloader packer
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
- Deletes itself
behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

smokeloaderbackdoortrojan