smokeloader | 220b19b53fcf44378376922de10f510c0e1cfb1192d8d3e096311563e105ed31 | Triage

Sharing

General

Target

220b19b53fcf44378376922de10f510c0e1cfb1192d8d3e096311563e105ed31
Size

342KB
Sample

221204-qrcdzach33
MD5

6258cfe5a32c808154b5998ef37702d9
SHA1

0aee83ed2c4387b35e07b9054ed0fbde1209a0ef
SHA256

220b19b53fcf44378376922de10f510c0e1cfb1192d8d3e096311563e105ed31
SHA512

6cb897b90c47e5120924e51fcb067e8a0ff3be74afc9d1a87d2bacdbc0c3abcbe74a083881db6cbcb2d3f8d1063726e11697f2a2f2667e5609f54f1895f8955d
SSDEEP

6144:Dg+iVBLE3Rv3BhGVBuIHKSJGI5NymlglEZG1PZ:Dg+iVZEdPcfaSyWglCG

Score

10^/10

smokeloader backdoor trojan

Malware Config

Targets

- Target
  
  220b19b53fcf44378376922de10f510c0e1cfb1192d8d3e096311563e105ed31
- Size
  
  342KB
- MD5
  
  6258cfe5a32c808154b5998ef37702d9
- SHA1
  
  0aee83ed2c4387b35e07b9054ed0fbde1209a0ef
- SHA256
  
  220b19b53fcf44378376922de10f510c0e1cfb1192d8d3e096311563e105ed31
- SHA512
  
  6cb897b90c47e5120924e51fcb067e8a0ff3be74afc9d1a87d2bacdbc0c3abcbe74a083881db6cbcb2d3f8d1063726e11697f2a2f2667e5609f54f1895f8955d
- SSDEEP
  
  6144:Dg+iVBLE3Rv3BhGVBuIHKSJGI5NymlglEZG1PZ:Dg+iVZEdPcfaSyWglCG
Score

10^/10

smokeloader backdoor trojan
- Detects Smokeloader packer
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
- Executes dropped EXE
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

smokeloaderbackdoortrojan