smokeloader | d41a8bd001feda9ad29b5178cb438c2e23fc4fb9775929b3885fc54d424ef929 | Triage

Submit
Reports

Overview

overview

Static

static

D41A8BD001...92.exe

windows7-x64

D41A8BD001...92.exe

windows10-2004-x64

Sharing

General

Target

D41A8BD001FEDA9AD29B5178CB438C2E23FC4FB977592.exe
Size

206KB
Sample

221123-z96vzaeg82
MD5

5c69d5ee9d7956ca66e976cc14e4c1c6
SHA1

cd00f5c6d14b13b88444fe32dc85421189b213e5
SHA256

d41a8bd001feda9ad29b5178cb438c2e23fc4fb9775929b3885fc54d424ef929
SHA512

9cd5ff6d87f5d0963137fab0d9f310d9e9c6f28a579316204799151f4746e84a0c6460e8d364e9d97838fc5c04d719053b84f61845672ab7163c887871d44028
SSDEEP

3072:i7NgkVCsLxRBH2/5ye0uRcbnl++HwAPLko/Mjux:kxzLzBZe0uR0lnwqL4

Score

10^/10

smokeloader backdoor trojan

Static task

static1

Behavioral task

behavioral1

Sample

D41A8BD001FEDA9AD29B5178CB438C2E23FC4FB977592.exe

Resource

win7-20220901-en

smokeloader backdoor trojan

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

D41A8BD001FEDA9AD29B5178CB438C2E23FC4FB977592.exe

Resource

win10v2004-20221111-en

smokeloader backdoor trojan

windows10-2004-x64

8 signatures

150 seconds

Malware Config

Targets

- Target
  
  D41A8BD001FEDA9AD29B5178CB438C2E23FC4FB977592.exe
- Size
  
  206KB
- MD5
  
  5c69d5ee9d7956ca66e976cc14e4c1c6
- SHA1
  
  cd00f5c6d14b13b88444fe32dc85421189b213e5
- SHA256
  
  d41a8bd001feda9ad29b5178cb438c2e23fc4fb9775929b3885fc54d424ef929
- SHA512
  
  9cd5ff6d87f5d0963137fab0d9f310d9e9c6f28a579316204799151f4746e84a0c6460e8d364e9d97838fc5c04d719053b84f61845672ab7163c887871d44028
- SSDEEP
  
  3072:i7NgkVCsLxRBH2/5ye0uRcbnl++HwAPLko/Mjux:kxzLzBZe0uR0lnwqL4
Score

10^/10

smokeloader backdoor trojan
- Detects Smokeloader packer
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

smokeloaderbackdoortrojan

behavioral2

smokeloaderbackdoortrojan

© 2018-2024

Terms | Privacy