smokeloader | d3da6df4b45366e7cccaa87cd3c8f7a8092693cad4d8c1ead332138c4aeddd05 | Triage

Sharing

General

Target

file.exe
Size

167KB
Sample

221125-xqxrvagf57
MD5

ce238be5fcd667453eb0ac423883c616
SHA1

3d2c4f58d0a2bc23191c43630465b2b5d0dfe204
SHA256

d3da6df4b45366e7cccaa87cd3c8f7a8092693cad4d8c1ead332138c4aeddd05
SHA512

e992aec384fcb3853f0dfbe432c76ebf6fc41a99a2d04c276b0f663a4f2101dc55f7b39250b988fea3eaead0ccee8fd0871dc0020def5c2421868c3ba64e0b55
SSDEEP

3072:7nd5+5y/09hczYvw5lL0m1MGGQpLXCY2hZrSPHM7nBUS:3yyMhczYSxMA12hcenB

Score

10^/10

smokeloader backdoor trojan

Malware Config

Targets

- Target
  
  file.exe
- Size
  
  167KB
- MD5
  
  ce238be5fcd667453eb0ac423883c616
- SHA1
  
  3d2c4f58d0a2bc23191c43630465b2b5d0dfe204
- SHA256
  
  d3da6df4b45366e7cccaa87cd3c8f7a8092693cad4d8c1ead332138c4aeddd05
- SHA512
  
  e992aec384fcb3853f0dfbe432c76ebf6fc41a99a2d04c276b0f663a4f2101dc55f7b39250b988fea3eaead0ccee8fd0871dc0020def5c2421868c3ba64e0b55
- SSDEEP
  
  3072:7nd5+5y/09hczYvw5lL0m1MGGQpLXCY2hZrSPHM7nBUS:3yyMhczYSxMA12hcenB
Score

10^/10

smokeloader backdoor trojan
- Detects Smokeloader packer
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

smokeloaderbackdoortrojan

behavioral2

smokeloaderbackdoortrojan