smokeloader | 91df4d8bcc606446a1df7d1e34e75271b13d11ad874ded3847871cbfe5f60b65 | Triage

Submit
Reports

Overview

overview

Static

static

35728864fe...53.exe

windows7-x64

35728864fe...53.exe

windows10-2004-x64

Sharing

General

Target

35728864feffc615636cd614008e7e3ed9fc697542c556f0edc98b705d4f2553
Size

104KB
Sample

221130-adpjdaah86
MD5

65340dd8ee2d7270d9d21d7d1095ddb4
SHA1

18cf2bf0c6a958176821c10107080cbd62506c13
SHA256

91df4d8bcc606446a1df7d1e34e75271b13d11ad874ded3847871cbfe5f60b65
SHA512

3d8aa3b32ce61c28ff57503471956c1c3e166629a866e453c5fbdb4c2c150571d86506f7f2cae505c3c88ee03a32045dad246f3717ca0b882c9149e58e04c8c7
SSDEEP

1536:mFn1cDjOVi5iNCmmjoiwzBSmWFBO20n7Q027g+ONCRAUuPNjoHJtgbo/cniBUWFI:unC8inmmjopFoCcU+S4gFjoptgbobUeI

Score

10^/10

smokeloader backdoor trojan

Static task

static1

Behavioral task

behavioral1

Sample

35728864feffc615636cd614008e7e3ed9fc697542c556f0edc98b705d4f2553.exe

Resource

win7-20220812-en

smokeloader backdoor trojan

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

35728864feffc615636cd614008e7e3ed9fc697542c556f0edc98b705d4f2553.exe

Resource

win10v2004-20220812-en

smokeloader backdoor trojan

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  35728864feffc615636cd614008e7e3ed9fc697542c556f0edc98b705d4f2553
- Size
  
  147KB
- MD5
  
  1a91e69d7ac978fe7dbd9c1082e1abfd
- SHA1
  
  e688694596872d570350ac640464a47b9cd883e8
- SHA256
  
  35728864feffc615636cd614008e7e3ed9fc697542c556f0edc98b705d4f2553
- SHA512
  
  91a5573093c509d1c290f10528b1d2e9528785a58c372f5a9cdbe3856f0323430b1124af3502196dee45e5a7c5002da16aad6be775b9e89244f0838a9e434530
- SSDEEP
  
  3072:Tggb/rHnh5FmaEekNo1aGj5xPSTpcMfkPFE9Oxx/X:P7rHBEe1PvPmpZkP0O7X
Score

10^/10

smokeloader backdoor trojan
- Detects Smokeloader packer
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

smokeloaderbackdoortrojan

behavioral2

smokeloaderbackdoortrojan

© 2018-2024

Terms | Privacy