smokeloader | 731e22be2a6b39304919dc24b750a720b23a0f1ed996a9b74cf0b088de6144b1 | Triage

Sharing

General

Target

file.exe
Size

187KB
Sample

221124-xvxmmsgd9x
MD5

44c87d3bc316eefe4dcbf66afed72abc
SHA1

96bde412ef761b4d53506ae4ed2999bc9dcaf137
SHA256

731e22be2a6b39304919dc24b750a720b23a0f1ed996a9b74cf0b088de6144b1
SHA512

2449da42cf169ef2a9e01ade64dd8c52ab6037ce9a726597d88f5eeaa726b06f77bc08612aaeccf9354cd23bee879b1724f222e24c8bab25fef7e75a8bf0e0c1
SSDEEP

3072:hsKq2z/YFBDK+1L8pOov9vl5izTyHnbACodEdE53iiy2:tqG6LaO6QTak/dKEFii1

Score

10^/10

smokeloader backdoor trojan

Malware Config

Targets

- Target
  
  file.exe
- Size
  
  187KB
- MD5
  
  44c87d3bc316eefe4dcbf66afed72abc
- SHA1
  
  96bde412ef761b4d53506ae4ed2999bc9dcaf137
- SHA256
  
  731e22be2a6b39304919dc24b750a720b23a0f1ed996a9b74cf0b088de6144b1
- SHA512
  
  2449da42cf169ef2a9e01ade64dd8c52ab6037ce9a726597d88f5eeaa726b06f77bc08612aaeccf9354cd23bee879b1724f222e24c8bab25fef7e75a8bf0e0c1
- SSDEEP
  
  3072:hsKq2z/YFBDK+1L8pOov9vl5izTyHnbACodEdE53iiy2:tqG6LaO6QTak/dKEFii1
Score

10^/10

smokeloader backdoor trojan
- Detects Smokeloader packer
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

smokeloaderbackdoortrojan

behavioral2

smokeloaderbackdoortrojan