Overview

overview

10

Static

static

file.exe

windows7-x64

10

file.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    file.exe

  • Size

    351KB

  • Sample

    221203-s77adsdd62

  • MD5

    09674aa4a2839ab8c8c5fa11e1978ee3

  • SHA1

    407b5f9bf911a26064cedd61a9ee68ca5e8c477e

  • SHA256

    17990e5ecafde8ac0332b0bc3a0c651aded98143e2b6d0a5132e683f6ef2768f

  • SHA512

    582322d13b3fd7df2b590d9f0bd9817d1cd7267948ffc148c06da7a716890834bee23e3a6e1004db890ba4fb4735b5a5a89d16402b5ddb538c461686ced33544

  • SSDEEP

    6144:ZthSkATKoOjZlS6Ql4UsdBQl+9S1nMW2RqneetwlY:ZtIkAT4qJlmQkSRMW3NwlY

Score
10/10
smokeloaderbackdoortrojan

Malware Config

Targets

    • Target

      file.exe

    • Size

      351KB

    • MD5

      09674aa4a2839ab8c8c5fa11e1978ee3

    • SHA1

      407b5f9bf911a26064cedd61a9ee68ca5e8c477e

    • SHA256

      17990e5ecafde8ac0332b0bc3a0c651aded98143e2b6d0a5132e683f6ef2768f

    • SHA512

      582322d13b3fd7df2b590d9f0bd9817d1cd7267948ffc148c06da7a716890834bee23e3a6e1004db890ba4fb4735b5a5a89d16402b5ddb538c461686ced33544

    • SSDEEP

      6144:ZthSkATKoOjZlS6Ql4UsdBQl+9S1nMW2RqneetwlY:ZtIkAT4qJlmQkSRMW3NwlY

    Score
    10/10
    smokeloaderbackdoortrojan

    • Detects Smokeloader packer

    • SmokeLoader

      Modular backdoor trojan in use since 2014.

      trojanbackdoorsmokeloader

    • Executes dropped EXE

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks