smokeloader | d70cf3685212bf1ee9c40963f5452cc0e657245e760629d84e7ccfbf18c67360 | Triage

Sharing

General

Target

d70cf3685212bf1ee9c40963f5452cc0e657245e760629d84e7ccfbf18c67360
Size

275KB
Sample

221128-s1k4kshe6w
MD5

c628db0f826e44bed30e2f958a69b7e7
SHA1

ab81e1a7ad6b7120887536023e4e32953d320c9b
SHA256

d70cf3685212bf1ee9c40963f5452cc0e657245e760629d84e7ccfbf18c67360
SHA512

f77ce81d6668e4ea1af3f8a35af300208af988c46b2a93a1f06285c4129e91b92233f339a40e2838b527e304004322de0cb48c0ad398df7e29fd509509134cc1
SSDEEP

6144:X0bviO4+aQE8nSTlqMUSk3ck53WiWVFvg4/FQF:EviOu8y52sMNWDgSm

Score

10^/10

smokeloader backdoor trojan

Malware Config

Targets

- Target
  
  d70cf3685212bf1ee9c40963f5452cc0e657245e760629d84e7ccfbf18c67360
- Size
  
  275KB
- MD5
  
  c628db0f826e44bed30e2f958a69b7e7
- SHA1
  
  ab81e1a7ad6b7120887536023e4e32953d320c9b
- SHA256
  
  d70cf3685212bf1ee9c40963f5452cc0e657245e760629d84e7ccfbf18c67360
- SHA512
  
  f77ce81d6668e4ea1af3f8a35af300208af988c46b2a93a1f06285c4129e91b92233f339a40e2838b527e304004322de0cb48c0ad398df7e29fd509509134cc1
- SSDEEP
  
  6144:X0bviO4+aQE8nSTlqMUSk3ck53WiWVFvg4/FQF:EviOu8y52sMNWDgSm
Score

10^/10

smokeloader backdoor trojan
- Detects Smokeloader packer
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

smokeloaderbackdoortrojan