smokeloader | 074982a8ba57dc30b39c6bae17f971243899a440c0f2b31a4194533ded4c5710 | Triage

Sharing

General

Target

074982a8ba57dc30b39c6bae17f971243899a440c0f2b31a4194533ded4c5710
Size

146KB
Sample

221129-3gb2nsha33
MD5

6ef42d9a3f118201d96872e86f433f71
SHA1

a2407fc375f177d9b1f50e487111f1fe141d8096
SHA256

074982a8ba57dc30b39c6bae17f971243899a440c0f2b31a4194533ded4c5710
SHA512

976cc8a552f59f69e932bde4c4720795feb66c2aa50004928c14e6093dfca7087791fafcd43593d3d87c38ab38c7b1068209c8ab2d5769d509ac81ea6cfa02d4
SSDEEP

3072:UD0LQoxwdg2sUp5AR9kf0Qoh/lofQJF2qB/c25wrg2:pQFdg2IR9kf0Qo1BHxcAP2

Score

10^/10

smokeloader backdoor trojan

Malware Config

Targets

- Target
  
  074982a8ba57dc30b39c6bae17f971243899a440c0f2b31a4194533ded4c5710
- Size
  
  146KB
- MD5
  
  6ef42d9a3f118201d96872e86f433f71
- SHA1
  
  a2407fc375f177d9b1f50e487111f1fe141d8096
- SHA256
  
  074982a8ba57dc30b39c6bae17f971243899a440c0f2b31a4194533ded4c5710
- SHA512
  
  976cc8a552f59f69e932bde4c4720795feb66c2aa50004928c14e6093dfca7087791fafcd43593d3d87c38ab38c7b1068209c8ab2d5769d509ac81ea6cfa02d4
- SSDEEP
  
  3072:UD0LQoxwdg2sUp5AR9kf0Qoh/lofQJF2qB/c25wrg2:pQFdg2IR9kf0Qo1BHxcAP2
Score

10^/10

smokeloader backdoor trojan
- Detects Smokeloader packer
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
- Executes dropped EXE
- Deletes itself
behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

smokeloaderbackdoortrojan