smokeloader | f639be3ed2c2b21b46395ba763e5c73bad363df7c320cbb9b09a8319b105c5ac | Triage

Sharing

General

Target

f639be3ed2c2b21b46395ba763e5c73bad363df7c320cbb9b09a8319b105c5ac
Size

274KB
Sample

221128-s5b2gahh7t
MD5

c1d30f79c6cd6c89357dc18ee3ffe021
SHA1

fcc1b4ded7786fe5f0f5e88eaabdfeed09a80bc3
SHA256

f639be3ed2c2b21b46395ba763e5c73bad363df7c320cbb9b09a8319b105c5ac
SHA512

dc3bc04969b2e03a4e4affb5e0ce48f23221c0f97b53a0a55eb3a503ee197488465d3227fb5b49482bc83b0111fa9cd8ad5e95d94569ac8a80ac83f86330696b
SSDEEP

6144:dIYlcO4z70f3hxEdSaOJlJujF+LZVFvg4/FQF:hlcOSAf3bEgU+FDgSm

Score

10^/10

smokeloader backdoor trojan

Malware Config

Targets

- Target
  
  f639be3ed2c2b21b46395ba763e5c73bad363df7c320cbb9b09a8319b105c5ac
- Size
  
  274KB
- MD5
  
  c1d30f79c6cd6c89357dc18ee3ffe021
- SHA1
  
  fcc1b4ded7786fe5f0f5e88eaabdfeed09a80bc3
- SHA256
  
  f639be3ed2c2b21b46395ba763e5c73bad363df7c320cbb9b09a8319b105c5ac
- SHA512
  
  dc3bc04969b2e03a4e4affb5e0ce48f23221c0f97b53a0a55eb3a503ee197488465d3227fb5b49482bc83b0111fa9cd8ad5e95d94569ac8a80ac83f86330696b
- SSDEEP
  
  6144:dIYlcO4z70f3hxEdSaOJlJujF+LZVFvg4/FQF:hlcOSAf3bEgU+FDgSm
Score

10^/10

smokeloader backdoor trojan
- Detects Smokeloader packer
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

smokeloaderbackdoortrojan