smokeloader | 379315128c33bc9dd554ae200a4be5203de34bf20e0b6434b93d42a467561c17 | Triage

Sharing

General

Target

c73dda78376b54476a8d18285f5ee7b110001dfdfeb05188716ce187b1f8b6d4
Size

103KB
Sample

221129-y72ykagd6x
MD5

9537f1dd96bd4df6b79839d84f2e2ceb
SHA1

e486fb195bf327cfc3154c4a88cfb4201843b7db
SHA256

379315128c33bc9dd554ae200a4be5203de34bf20e0b6434b93d42a467561c17
SHA512

33e6ba96f1a9098674b185b1ae0d2db16bdf133ab8c90cb9cb99f295438de5b6cdc25f9ecd9a6e79b5fef6d2342d501e231daefac747dfbdc3483b2f2a950a64
SSDEEP

3072:xRuG2FhP5mDg/iy48leZba1MkxrEAK72fRk9dzc:OTFV5eg/iyzkZGOkxYAK72yfc

Score

10^/10

smokeloader backdoor trojan

Malware Config

Targets

- Target
  
  c73dda78376b54476a8d18285f5ee7b110001dfdfeb05188716ce187b1f8b6d4
- Size
  
  146KB
- MD5
  
  03242617ef5408ed1d39b7cccc2ed3ce
- SHA1
  
  48dccb7e1e325f88e879037cb8afa19e076fd2c5
- SHA256
  
  c73dda78376b54476a8d18285f5ee7b110001dfdfeb05188716ce187b1f8b6d4
- SHA512
  
  4e01c4858bed43f42d773d49db255ab7dd9376b611b59ce8dadd110dfd419482589e12383e7ed6fe9623768110c12a69d72ff04f26357d33a3395c265eb1220f
- SSDEEP
  
  3072:qzljXWnKn5i0MHMoGq6BTHshlapFyZis0I+:KDWn3sqsU4pF5x
Score

10^/10

smokeloader backdoor trojan
- Detects Smokeloader packer
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

smokeloaderbackdoortrojan

behavioral2

smokeloaderbackdoortrojan