smokeloader | 16af512bdfdd4f2fde3d8c7d42a5806271b042e22d8ceb85f30f09552cff8b70 | Triage

Submit
Reports

Overview

overview

Static

static

ed4b77f4fc...54.exe

windows7-x64

ed4b77f4fc...54.exe

windows10-2004-x64

Sharing

General

Target

ed4b77f4fc63c9087159fa845de6e12cdcd51648583641ac767cc6f7db3df254
Size

104KB
Sample

221129-zamytade49
MD5

dc5cd2c376e1f9158eac9c54a2184baf
SHA1

d0a2330a9caf6de2764818bc74111c73bba7feb7
SHA256

16af512bdfdd4f2fde3d8c7d42a5806271b042e22d8ceb85f30f09552cff8b70
SHA512

d954ff0ae24728cd55d4bf5ebef15a7e329a055c6bd98a3b807c65299b3afa95328232adc82aa8206043518d0a9db552ac2e4c7ff665e5b7898a0b19b7af11e5
SSDEEP

3072:QcziqNs/lo9mG0Yvcr5GusXPQnRlYdUmqusDKbM4sg:1zHNs0p1c1tCQRlYmr+sg

Score

10^/10

smokeloader backdoor trojan

Static task

static1

Behavioral task

behavioral1

Sample

ed4b77f4fc63c9087159fa845de6e12cdcd51648583641ac767cc6f7db3df254.exe

Resource

win7-20221111-en

smokeloader backdoor trojan

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

ed4b77f4fc63c9087159fa845de6e12cdcd51648583641ac767cc6f7db3df254.exe

Resource

win10v2004-20221111-en

smokeloader backdoor trojan

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  ed4b77f4fc63c9087159fa845de6e12cdcd51648583641ac767cc6f7db3df254
- Size
  
  147KB
- MD5
  
  261595612bf663a5ef5f96c02d51d66b
- SHA1
  
  e25c4cda538dab71f7973e1b75b4f9db80888910
- SHA256
  
  ed4b77f4fc63c9087159fa845de6e12cdcd51648583641ac767cc6f7db3df254
- SHA512
  
  76459bc5747642fd6ff88385e4b07cdf1fcce78e7ee9c7d315be478fdd676e58f81b3fdc3d38bf5dbca9e49b9ad28a70ecb861d669f5c9ff83abc143d485f39b
- SSDEEP
  
  3072:Qrbe7p3M5n5kJldsbcymhP+egCoupZ9v:Cet3MsVsbXUP+C
Score

10^/10

smokeloader backdoor trojan
- Detects Smokeloader packer
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

smokeloaderbackdoortrojan

behavioral2

smokeloaderbackdoortrojan

© 2018-2024

Terms | Privacy