smokeloader | 4c043157178be176df0ddbc2027325bca64a6cf78c5f916ec4fe9e5ca25cd194 | Triage

Submit
Reports

Overview

overview

Static

static

file.exe

windows7-x64

file.exe

windows10-2004-x64

Sharing

General

Target

file.exe
Size

187KB
Sample

221123-mm9xwsee55
MD5

271acc60be43297caa0010867336c64d
SHA1

f1aeac7c49892cab287d73b03d9f6f384c8c2f04
SHA256

4c043157178be176df0ddbc2027325bca64a6cf78c5f916ec4fe9e5ca25cd194
SHA512

bc19e0f34fbc078c4b5c23392458dc0cb982f6479c0196d16b5ad522ed3ae2749e6a0057b818a54e5383bedbbfbd5955c917e11901342dd8e408cca0250b2d24
SSDEEP

3072:jqlgmKj9rLe9tDgWymO5L6lqHQVi7j3utJt2GPmTQT:2lQLe9tDgNl6YwVtxTmTa

Score

10^/10

smokeloader backdoor trojan

Static task

static1

Behavioral task

behavioral1

Sample

file.exe

Resource

win7-20221111-en

smokeloader backdoor trojan

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

file.exe

Resource

win10v2004-20221111-en

smokeloader backdoor trojan

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  file.exe
- Size
  
  187KB
- MD5
  
  271acc60be43297caa0010867336c64d
- SHA1
  
  f1aeac7c49892cab287d73b03d9f6f384c8c2f04
- SHA256
  
  4c043157178be176df0ddbc2027325bca64a6cf78c5f916ec4fe9e5ca25cd194
- SHA512
  
  bc19e0f34fbc078c4b5c23392458dc0cb982f6479c0196d16b5ad522ed3ae2749e6a0057b818a54e5383bedbbfbd5955c917e11901342dd8e408cca0250b2d24
- SSDEEP
  
  3072:jqlgmKj9rLe9tDgWymO5L6lqHQVi7j3utJt2GPmTQT:2lQLe9tDgNl6YwVtxTmTa
Score

10^/10

smokeloader backdoor trojan
- Detects Smokeloader packer
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

smokeloaderbackdoortrojan

behavioral2

smokeloaderbackdoortrojan

© 2018-2024

Terms | Privacy