smokeloader | 3648e548491bad2bb70f6193eaebf3b7e4ddd64836feecd99a1fce4f9ec657ea | Triage

Sharing

General

Target

3648e548491bad2bb70f6193eaebf3b7e4ddd64836feecd99a1fce4f9ec657ea
Size

273KB
Sample

221128-t7z2radf2x
MD5

69466f8008453e69036acd508c20f26b
SHA1

f95be340145d2b4b435973a7ea423d5b19a85712
SHA256

3648e548491bad2bb70f6193eaebf3b7e4ddd64836feecd99a1fce4f9ec657ea
SHA512

e85e4e8cf862d1d79324c2a32380634b47b713476b3ed3c1b3dd41df7d3aedf03df78ba44560e46473139c85be794ee24936804cd28bca890470d02fb7f7b9d7
SSDEEP

6144:w+BbBAk2WtKI+ahgR0ISkefdlcfrVFvg4/FQF:LdAkplhirDgSm

Score

10^/10

smokeloader backdoor trojan

Malware Config

Targets

- Target
  
  3648e548491bad2bb70f6193eaebf3b7e4ddd64836feecd99a1fce4f9ec657ea
- Size
  
  273KB
- MD5
  
  69466f8008453e69036acd508c20f26b
- SHA1
  
  f95be340145d2b4b435973a7ea423d5b19a85712
- SHA256
  
  3648e548491bad2bb70f6193eaebf3b7e4ddd64836feecd99a1fce4f9ec657ea
- SHA512
  
  e85e4e8cf862d1d79324c2a32380634b47b713476b3ed3c1b3dd41df7d3aedf03df78ba44560e46473139c85be794ee24936804cd28bca890470d02fb7f7b9d7
- SSDEEP
  
  6144:w+BbBAk2WtKI+ahgR0ISkefdlcfrVFvg4/FQF:LdAkplhirDgSm
Score

10^/10

smokeloader backdoor trojan
- Detects Smokeloader packer
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

smokeloaderbackdoortrojan