smokeloader | fba485c05a65352e317e8996c51b341141bd30e501121cb8424be5bd14e49b95 | Triage

Sharing

General

Target

fba485c05a65352e317e8996c51b341141bd30e501121cb8424be5bd14e49b95
Size

138KB
Sample

221130-ab93asag85
MD5

07c74ff186207350b6cc8eb185facb66
SHA1

6bc98c1765b0e336d1c28b673ab646f5b9fe4231
SHA256

fba485c05a65352e317e8996c51b341141bd30e501121cb8424be5bd14e49b95
SHA512

6eaae31dc4d4aa1ace972851d8981f44b16e6fb2a501170ab5ff6925bed0bbc848da50aae05ae87daf8bb34179d625a8b87d5f8d53a991d57323a63daff78073
SSDEEP

3072:FTDybr5Y9a+S8u5skW+lAsfdvL3tsUQ+kDwUxQp:k+S8us+lAa5C7ZwUu

Score

10^/10

smokeloader backdoor trojan

Malware Config

Targets

- Target
  
  fba485c05a65352e317e8996c51b341141bd30e501121cb8424be5bd14e49b95
- Size
  
  138KB
- MD5
  
  07c74ff186207350b6cc8eb185facb66
- SHA1
  
  6bc98c1765b0e336d1c28b673ab646f5b9fe4231
- SHA256
  
  fba485c05a65352e317e8996c51b341141bd30e501121cb8424be5bd14e49b95
- SHA512
  
  6eaae31dc4d4aa1ace972851d8981f44b16e6fb2a501170ab5ff6925bed0bbc848da50aae05ae87daf8bb34179d625a8b87d5f8d53a991d57323a63daff78073
- SSDEEP
  
  3072:FTDybr5Y9a+S8u5skW+lAsfdvL3tsUQ+kDwUxQp:k+S8us+lAa5C7ZwUu
Score

10^/10

smokeloader backdoor trojan
- Detects Smokeloader packer
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

smokeloaderbackdoortrojan