smokeloader | 44d4c88e3f5872959460133834e2d53acdf3613882a07a4424cca09d1bf6c273 | Triage

Sharing

General

Target

44d4c88e3f5872959460133834e2d53acdf3613882a07a4424cca09d1bf6c273
Size

148KB
Sample

221127-ym4lnaea93
MD5

15995c0000b27ccd38e1189e23c0fb03
SHA1

4d14b915b04f65b9c94797d354506845b5bfa5d7
SHA256

44d4c88e3f5872959460133834e2d53acdf3613882a07a4424cca09d1bf6c273
SHA512

d1bdee19f48ee53d0f5103c2e6e4f65618a55b80c112d4a7de8dd9f2d2558406b6035128e60cdc3f5f8d6404fdd2a1e5c5d821fac8e56c11bf46cfba68ca75da
SSDEEP

3072:/01G09UfbOvhyk5TAqnrM6is+zHcYws/M:mG0++h/vKsKHdwI

Score

10^/10

smokeloader backdoor trojan

Malware Config

Targets

- Target
  
  44d4c88e3f5872959460133834e2d53acdf3613882a07a4424cca09d1bf6c273
- Size
  
  148KB
- MD5
  
  15995c0000b27ccd38e1189e23c0fb03
- SHA1
  
  4d14b915b04f65b9c94797d354506845b5bfa5d7
- SHA256
  
  44d4c88e3f5872959460133834e2d53acdf3613882a07a4424cca09d1bf6c273
- SHA512
  
  d1bdee19f48ee53d0f5103c2e6e4f65618a55b80c112d4a7de8dd9f2d2558406b6035128e60cdc3f5f8d6404fdd2a1e5c5d821fac8e56c11bf46cfba68ca75da
- SSDEEP
  
  3072:/01G09UfbOvhyk5TAqnrM6is+zHcYws/M:mG0++h/vKsKHdwI
Score

10^/10

smokeloader backdoor trojan
- Detects Smokeloader packer
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

smokeloaderbackdoortrojan