smokeloader | d1732014e67ffe2fce06ea9ca2c7451129da6432133e6a9158e630875a0bdd96 | Triage

Sharing

General

Target

d1732014e67ffe2fce06ea9ca2c7451129da6432133e6a9158e630875a0bdd96
Size

274KB
Sample

221128-vp2cjafc2x
MD5

506e84fdff6f0f14a4c2b36893dbde2d
SHA1

c48982ed02a64bd0c3714f25de73fc442a42e6f1
SHA256

d1732014e67ffe2fce06ea9ca2c7451129da6432133e6a9158e630875a0bdd96
SHA512

8739157cdf13dda2e37b8e1b8b653517c88b3da4b57f0f19afadd78cf9016fa88f476e914a6d13b8ce153b4bb113d9ee0036969bce8311d7edf616e21962c6b3
SSDEEP

6144:xA3Mri12W1sOuByTclcknxrUjVFvg4/FQF:wei1HHuB0OnMDgSm

Score

10^/10

smokeloader backdoor trojan

Malware Config

Targets

- Target
  
  d1732014e67ffe2fce06ea9ca2c7451129da6432133e6a9158e630875a0bdd96
- Size
  
  274KB
- MD5
  
  506e84fdff6f0f14a4c2b36893dbde2d
- SHA1
  
  c48982ed02a64bd0c3714f25de73fc442a42e6f1
- SHA256
  
  d1732014e67ffe2fce06ea9ca2c7451129da6432133e6a9158e630875a0bdd96
- SHA512
  
  8739157cdf13dda2e37b8e1b8b653517c88b3da4b57f0f19afadd78cf9016fa88f476e914a6d13b8ce153b4bb113d9ee0036969bce8311d7edf616e21962c6b3
- SSDEEP
  
  6144:xA3Mri12W1sOuByTclcknxrUjVFvg4/FQF:wei1HHuB0OnMDgSm
Score

10^/10

smokeloader backdoor trojan
- Detects Smokeloader packer
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

smokeloaderbackdoortrojan