smokeloader | 90808db2bff7e47b7341ee272f60fb98c1f31ae4a631c60bf70668db17022353 | Triage

Analysis

max time kernel
13s
max time network
19s
platform
windows7_x64
resource
win7-20241010-en
resource tags

arch:x64arch:x86image:win7-20241010-enlocale:en-usos:windows7-x64system
submitted
04/11/2024, 23:48

Sharing

Report Analysis Logs

General

Target

90808db2bff7e47b7341ee272f60fb98c1f31ae4a631c60bf70668db17022353.exe
Size

334KB
MD5

0af50bdfc4a6ffc9d7ec529c1f287bc6
SHA1

33a9602b7572d8a841d4d6446e63726811457992
SHA256

90808db2bff7e47b7341ee272f60fb98c1f31ae4a631c60bf70668db17022353
SHA512

14be414cdd0f08f2493d61f61fa035715b8a42fc722bd1b82d9db8dbf6fea7c1702a8f725440b35ed11ecbbc2cc4a0882f40a38bb03e79ba90eeb3ca3008d7a4
SSDEEP

6144:Iw/LqJcTHEKkTFLOPJv4t1+jAWTM4xVvkHb+ewB:h/EcTkKqFLO2WXTMENi+7

Score

10^/10

smokeloader 2023 backdoor trojan

Malware Config

Extracted

Family

smokeloader

Botnet

2023

Signatures

SmokeLoader
Modular backdoor trojan in use since 2014.
trojan backdoor smokeloader
Smokeloader family
smokeloader

C:\Users\Admin\AppData\Local\Temp\90808db2bff7e47b7341ee272f60fb98c1f31ae4a631c60bf70668db17022353.exe
"C:\Users\Admin\AppData\Local\Temp\90808db2bff7e47b7341ee272f60fb98c1f31ae4a631c60bf70668db17022353.exe"
1⤵
PID:2380

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/2380-1-0x0000000000540000-0x0000000000640000-memory.dmp

Filesize
1024KB

Download
memory/2380-2-0x0000000000220000-0x0000000000229000-memory.dmp

Filesize
36KB

Download
memory/2380-3-0x0000000000400000-0x0000000000409000-memory.dmp

Filesize
36KB

Download
memory/2380-4-0x0000000000400000-0x0000000000459000-memory.dmp

Filesize
356KB

Download
memory/2380-5-0x0000000000220000-0x0000000000229000-memory.dmp

Filesize
36KB

Download