smokeloader | 63cccbbabd53bbc5237e396a5c0f046571c6b0b901958ce5e187b7f521d33c10 | Triage

Sharing

General

Target

0bf2dc7221cbc27f96e5a2ec462cb62763b2b390fc9a91ff59684865a3133442
Size

114KB
Sample

221127-w7wqfade9v
MD5

5a028a885290ec8e1d616278e7eafdee
SHA1

37660da4eb19feda7d465f87cc6146fe7d04aa36
SHA256

63cccbbabd53bbc5237e396a5c0f046571c6b0b901958ce5e187b7f521d33c10
SHA512

901301f7552a48c5e5778b224ae656ae837d6b1ea01bd52bf17fabe207d9366094977d6ca042001c3ec8681020e0d7cb0b71e44ee06a1bce0d4fb21e9eb9a050
SSDEEP

3072:YRW86tacsDpeYdWx/4LsB997QWoiH46f10eXBmQhL:YRswr8Yi4Ls1884Y19XBmQh

Score

10^/10

smokeloader backdoor trojan

Malware Config

Targets

- Target
  
  0bf2dc7221cbc27f96e5a2ec462cb62763b2b390fc9a91ff59684865a3133442
- Size
  
  168KB
- MD5
  
  1422b741bdff4fc04b5a8155961b92d9
- SHA1
  
  fc145fc4566aab3c0a286afb988ccfb6e9eb2a5a
- SHA256
  
  0bf2dc7221cbc27f96e5a2ec462cb62763b2b390fc9a91ff59684865a3133442
- SHA512
  
  f2f8b6b2e6ed2df5f938e7163c6c5a2d153f08df6568b03e1389b901378a6d8379af4c65766e6ca2ed97bdb70051a922887f0abb29946380940c81cf6b1a853a
- SSDEEP
  
  3072:DqQllqIBHD66xu8dDJS5vIDu8V8UESdOw6BJ:jj60xDU8PTESdl6
Score

10^/10

smokeloader backdoor trojan
- Detects Smokeloader packer
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

smokeloaderbackdoortrojan

behavioral2

smokeloaderbackdoortrojan