smokeloader | 45a64da29f0cbf395e3d1be67afe0863b89b662372ada7d5d940aa79fcbd3002 | Triage

Sharing

General

Target

45a64da29f0cbf395e3d1be67afe0863b89b662372ada7d5d940aa79fcbd3002
Size

150KB
Sample

221127-yl46sshh5s
MD5

751ec4df0aa858834cf3a3da7b5c4454
SHA1

76f5f134e9173084d2dc1cc16dac145b7af99514
SHA256

45a64da29f0cbf395e3d1be67afe0863b89b662372ada7d5d940aa79fcbd3002
SHA512

192682ca1c10464c08ad704ceafd9f573eca15ed0044adbb1f327a405807bc64529e5cac4caef61e16103b08be824f3f9651518558d63a0eabd1529f88818308
SSDEEP

3072:feswqLTlJGm9XSOpw5k0q4Ra0ojlu5KDpz0fVeVpeKme9/47j55:5Plx9CO7GAAy5VeHe9/4T

Score

10^/10

smokeloader backdoor trojan

Malware Config

Targets

- Target
  
  45a64da29f0cbf395e3d1be67afe0863b89b662372ada7d5d940aa79fcbd3002
- Size
  
  150KB
- MD5
  
  751ec4df0aa858834cf3a3da7b5c4454
- SHA1
  
  76f5f134e9173084d2dc1cc16dac145b7af99514
- SHA256
  
  45a64da29f0cbf395e3d1be67afe0863b89b662372ada7d5d940aa79fcbd3002
- SHA512
  
  192682ca1c10464c08ad704ceafd9f573eca15ed0044adbb1f327a405807bc64529e5cac4caef61e16103b08be824f3f9651518558d63a0eabd1529f88818308
- SSDEEP
  
  3072:feswqLTlJGm9XSOpw5k0q4Ra0ojlu5KDpz0fVeVpeKme9/47j55:5Plx9CO7GAAy5VeHe9/4T
Score

10^/10

smokeloader backdoor trojan
- Detects Smokeloader packer
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

smokeloaderbackdoortrojan