smokeloader | c31f86b009d59d11f23bb2b9e989062fb353bfb86e6a9d13a4898c4bc2249a70 | Triage

Submit
Reports

Overview

overview

Static

static

2528-0-0x0...ry.exe

windows7-x64

2528-0-0x0...ry.exe

windows10-2004-x64

Sharing

General

Target

2528-0-0x0000000000400000-0x0000000000409000-memory.dmp
Size

36KB
Sample

240526-l1pcnsfb52
MD5

3443196a5191ca721033b5938ee9c1d8
SHA1

785e4f306a2b3feaf9128bd045c7920bad3e238b
SHA256

c31f86b009d59d11f23bb2b9e989062fb353bfb86e6a9d13a4898c4bc2249a70
SHA512

58f9a79c695ec6665a2d1742a8c58dcd42fdf0a7cc7b131a7ae81f54ec8cb83af4666bea2ad621c02d15beec6b96241f11446f9e8700b0fdb348f5602a5f91c5
SSDEEP

768:OAUoYtNFIoKpDd1KM02kQhx4hOtFceWzYqvz0bOS:H5EXLKtd1PBkQD4UtFceWnz

Score

10^/10

smokeloader pub1 backdoor trojan

Static task

static1

pub1 smokeloader

2 signatures

Behavioral task

behavioral1

Sample

2528-0-0x0000000000400000-0x0000000000409000-memory.exe

Resource

win7-20240221-en

smokeloader backdoor trojan

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

2528-0-0x0000000000400000-0x0000000000409000-memory.exe

Resource

win10v2004-20240426-en

smokeloader backdoor trojan

windows10-2004-x64

2 signatures

150 seconds

Malware Config

Extracted

Family

smokeloader

Botnet

pub1

Targets

- Target
  
  2528-0-0x0000000000400000-0x0000000000409000-memory.dmp
- Size
  
  36KB
- MD5
  
  3443196a5191ca721033b5938ee9c1d8
- SHA1
  
  785e4f306a2b3feaf9128bd045c7920bad3e238b
- SHA256
  
  c31f86b009d59d11f23bb2b9e989062fb353bfb86e6a9d13a4898c4bc2249a70
- SHA512
  
  58f9a79c695ec6665a2d1742a8c58dcd42fdf0a7cc7b131a7ae81f54ec8cb83af4666bea2ad621c02d15beec6b96241f11446f9e8700b0fdb348f5602a5f91c5
- SSDEEP
  
  768:OAUoYtNFIoKpDd1KM02kQhx4hOtFceWzYqvz0bOS:H5EXLKtd1PBkQD4UtFceWnz
Score

10^/10

smokeloader backdoor trojan
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

pub1smokeloader

behavioral1

smokeloaderbackdoortrojan

behavioral2

smokeloaderbackdoortrojan

© 2018-2024

Terms | Privacy