smokeloader | 254a7be3d55716db917ff1e8540ba6210f8e555d8928f421e7f554342ebbc317 | Triage

Sharing

General

Target

254a7be3d55716db917ff1e8540ba6210f8e555d8928f421e7f554342ebbc317
Size

320KB
Sample

221206-f9xgrahe76
MD5

00bf38b383a70153e1af48889ab12e16
SHA1

80b8873e1349ac8bfc46044ab56b289f5b21b472
SHA256

254a7be3d55716db917ff1e8540ba6210f8e555d8928f421e7f554342ebbc317
SHA512

f6d0da7f30d26eb4aac71653a0eae48c1a90b1b1bc20b7d3abb984bb1ef7fe8de1fc581d77331ec72bccb571e312b9530317b260dc950aec6a0fb4cda9f46990
SSDEEP

6144:7mMBWyZdLkYANaeKQksR5TK1QbzuGy3W6SzBSF:7mMQyHIYANaDsR5/AQz8F

Score

10^/10

smokeloader backdoor trojan

Malware Config

Targets

- Target
  
  254a7be3d55716db917ff1e8540ba6210f8e555d8928f421e7f554342ebbc317
- Size
  
  320KB
- MD5
  
  00bf38b383a70153e1af48889ab12e16
- SHA1
  
  80b8873e1349ac8bfc46044ab56b289f5b21b472
- SHA256
  
  254a7be3d55716db917ff1e8540ba6210f8e555d8928f421e7f554342ebbc317
- SHA512
  
  f6d0da7f30d26eb4aac71653a0eae48c1a90b1b1bc20b7d3abb984bb1ef7fe8de1fc581d77331ec72bccb571e312b9530317b260dc950aec6a0fb4cda9f46990
- SSDEEP
  
  6144:7mMBWyZdLkYANaeKQksR5TK1QbzuGy3W6SzBSF:7mMQyHIYANaDsR5/AQz8F
Score

10^/10

smokeloader backdoor trojan
- Detects Smokeloader packer
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

smokeloaderbackdoortrojan