smokeloader | b71865f0813581bc333d3f2fcc19af81d1f88d66d52d7d8d5817f8c656a0ed44 | Triage

Submit
Reports

Overview

overview

Static

static

97f42e6dfc...56.exe

windows7-x64

97f42e6dfc...56.exe

windows10-2004-x64

Sharing

General

Target

97f42e6dfc6f99cd19f5f3ab483ec38775f481538247d213e75304acb90e1c56
Size

170KB
Sample

221206-d6re8acc8t
MD5

50c136543e463d231366cc7f2d2f9c36
SHA1

e65f75c90c1cec8308ec4efd27f029163a9d41da
SHA256

b71865f0813581bc333d3f2fcc19af81d1f88d66d52d7d8d5817f8c656a0ed44
SHA512

514456cb2cc23245063b546be0aea0e6c3a815d2c305d6364515357bfd74caaed5a683b19ec04eb6e2892a56984cfb37812cc2a8f6b4a8fb55bacc183a8c8de3
SSDEEP

3072:PWMDfJD2Td0HG3Qj7GmtwZVusHxQkInKPt8IY4R5IY2x4u7iHpvMyv:PDJDkd0HG3GGtPusHxQnO5n84u7iHpvz

Score

10^/10

smokeloader backdoor trojan

Static task

static1

Behavioral task

behavioral1

Sample

97f42e6dfc6f99cd19f5f3ab483ec38775f481538247d213e75304acb90e1c56.exe

Resource

win7-20220901-en

smokeloader backdoor trojan

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

97f42e6dfc6f99cd19f5f3ab483ec38775f481538247d213e75304acb90e1c56.exe

Resource

win10v2004-20221111-en

smokeloader backdoor trojan

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  97f42e6dfc6f99cd19f5f3ab483ec38775f481538247d213e75304acb90e1c56
- Size
  
  273KB
- MD5
  
  a505f310a93fbfd3632b596bafbda27d
- SHA1
  
  e8ed6d0fd2b9f89fc65c064868b60a53d7456692
- SHA256
  
  97f42e6dfc6f99cd19f5f3ab483ec38775f481538247d213e75304acb90e1c56
- SHA512
  
  11ab305020cd635fd00dcff8286ff2654e32463d0e9e3517dc06fc2cf43569edeccba1c13da9ff43dab85a71d1d9fb4f1f97c48858c8630b47dd920634e41717
- SSDEEP
  
  3072:JOXVVR4YZQgN0//adWR5X41U1V/kPgDsHxQkInKPt7CH3YiVRvJTcpbofxpgYgVu:JWc//aURMysHxQnO4YIDc9ecVS
Score

10^/10

smokeloader backdoor trojan
- Detects Smokeloader packer
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

smokeloaderbackdoortrojan

behavioral2

smokeloaderbackdoortrojan

© 2018-2024

Terms | Privacy