smokeloader | c71273d322d6a0a8e2bd5ac4ef1a367adb674e275fbd16423374e0f17471e6a0 | Triage

Sharing

General

Target

file.exe
Size

185KB
Sample

221123-pv7tlscd22
MD5

4c0012567fff951940142f5ab1352cc3
SHA1

f91b9ec58f67ca1491c43c3998bb6c4d9b9dc0dc
SHA256

c71273d322d6a0a8e2bd5ac4ef1a367adb674e275fbd16423374e0f17471e6a0
SHA512

35271dde9393ae431a35ae806bc4b06a687e0d5db14588394e4957e13611e3f0f3214f44a95fd3005ad3a9bc4f9d23c54429b04b6486f35d629704578592bfff
SSDEEP

3072:eqltBQzKLGbVqWUHO5UIZuQh6G5x4t8EID6fz5H:BlDLGbVq/LI/x4+36fzV

Score

10^/10

smokeloader backdoor trojan

Malware Config

Targets

- Target
  
  file.exe
- Size
  
  185KB
- MD5
  
  4c0012567fff951940142f5ab1352cc3
- SHA1
  
  f91b9ec58f67ca1491c43c3998bb6c4d9b9dc0dc
- SHA256
  
  c71273d322d6a0a8e2bd5ac4ef1a367adb674e275fbd16423374e0f17471e6a0
- SHA512
  
  35271dde9393ae431a35ae806bc4b06a687e0d5db14588394e4957e13611e3f0f3214f44a95fd3005ad3a9bc4f9d23c54429b04b6486f35d629704578592bfff
- SSDEEP
  
  3072:eqltBQzKLGbVqWUHO5UIZuQh6G5x4t8EID6fz5H:BlDLGbVq/LI/x4+36fzV
Score

10^/10

smokeloader backdoor trojan
- Detects Smokeloader packer
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

smokeloaderbackdoortrojan

behavioral2

smokeloaderbackdoortrojan