smokeloader | c88f3b731984ada310840bdb984decbfe9d453a38a805a16d6502d03b975c431 | Triage

Sharing

General

Target

c88f3b731984ada310840bdb984decbfe9d453a38a805a16d6502d03b975c431
Size

185KB
Sample

221123-pb49daeb2v
MD5

44538014670c0e5fade1a7b76d9f99b6
SHA1

407e6f8b13d5c03a28ad10f5e18182a922a7ebbd
SHA256

c88f3b731984ada310840bdb984decbfe9d453a38a805a16d6502d03b975c431
SHA512

db5a6c7bd7f6a9a953064fa1424513a024b62c3107d23194d12f81af6fa2b60e073ad1c22001b135d4bf88ab0d399b1e5f64a47ee796a986296f5854ded37ede
SSDEEP

3072:0GJ7kBLVLUam7WozO5BpugQbdiXx+xOXI1bq:PJ8LUam7bEhOUI

Score

10^/10

smokeloader backdoor trojan

Malware Config

Targets

- Target
  
  c88f3b731984ada310840bdb984decbfe9d453a38a805a16d6502d03b975c431
- Size
  
  185KB
- MD5
  
  44538014670c0e5fade1a7b76d9f99b6
- SHA1
  
  407e6f8b13d5c03a28ad10f5e18182a922a7ebbd
- SHA256
  
  c88f3b731984ada310840bdb984decbfe9d453a38a805a16d6502d03b975c431
- SHA512
  
  db5a6c7bd7f6a9a953064fa1424513a024b62c3107d23194d12f81af6fa2b60e073ad1c22001b135d4bf88ab0d399b1e5f64a47ee796a986296f5854ded37ede
- SSDEEP
  
  3072:0GJ7kBLVLUam7WozO5BpugQbdiXx+xOXI1bq:PJ8LUam7bEhOUI
Score

10^/10

smokeloader backdoor trojan
- Detects Smokeloader packer
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

smokeloaderbackdoortrojan