smokeloader | ce6fcaa71aeb3238caa55b29a448634efdd523be3030fd5e11c5206267eb04ad | Triage

Sharing

General

Target

ce6fcaa71aeb3238caa55b29a448634efdd523be3030fd5e11c5206267eb04ad.exe
Size

341KB
Sample

221206-efsq2ahc87
MD5

e97beb54464521823d96bf00d794ff40
SHA1

dc5760ec2fc4879b00f63c9653bb085188f20220
SHA256

ce6fcaa71aeb3238caa55b29a448634efdd523be3030fd5e11c5206267eb04ad
SHA512

7a19d2d63159423e69b9d6f3af6100319e8c93d78d72dcdb241db93b46d17eb3864584c9c806c2a6234d6e97cb24491f9cfb5a5ecd02cf488e14aef6b2254aec
SSDEEP

6144:BYFisSbPnphFjxS1vvymlgldvpgLPDG1PZ:BYFisKp7jxqvvyWgldvpgLPDG

Score

10^/10

smokeloader backdoor trojan

Malware Config

Targets

- Target
  
  ce6fcaa71aeb3238caa55b29a448634efdd523be3030fd5e11c5206267eb04ad.exe
- Size
  
  341KB
- MD5
  
  e97beb54464521823d96bf00d794ff40
- SHA1
  
  dc5760ec2fc4879b00f63c9653bb085188f20220
- SHA256
  
  ce6fcaa71aeb3238caa55b29a448634efdd523be3030fd5e11c5206267eb04ad
- SHA512
  
  7a19d2d63159423e69b9d6f3af6100319e8c93d78d72dcdb241db93b46d17eb3864584c9c806c2a6234d6e97cb24491f9cfb5a5ecd02cf488e14aef6b2254aec
- SSDEEP
  
  6144:BYFisSbPnphFjxS1vvymlgldvpgLPDG1PZ:BYFisKp7jxqvvyWgldvpgLPDG
Score

10^/10

smokeloader backdoor trojan
- Detects Smokeloader packer
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

smokeloaderbackdoortrojan

behavioral2

smokeloaderbackdoortrojan