smokeloader | d546d17fee791f053d1f4c303018921eac58a93c989abdf9b4f2bd3ad7e54572 | Triage

Submit
Reports

Overview

overview

Static

static

3

cryptolaemus

windows10-2004-x64

cryptolaemus

windows11-21h2-x64

Sharing

General

Target

d546d17fee791f053d1f4c303018921eac58a93c989abdf9b4f2bd3ad7e54572
Size

321KB
Sample

240625-p66exs1dld
MD5

56f2279c2ca8f728968c09ae3334c3a0
SHA1

f854f3c3111b6e430b79f32b8030f1c8f229ac70
SHA256

d546d17fee791f053d1f4c303018921eac58a93c989abdf9b4f2bd3ad7e54572
SHA512

ccb69243e88c17aa58723159da68ce9c3bb343a0db5f0676a05943d372d6f75439f95c056575f91091d94ce7a5c055671ef48261b30f62b09ac3361f1dc83c64
SSDEEP

3072:72wLCsojh1pcnIC4Bxyh0i9YsePnbqrme5xlt4LtHrO1Ek1EJxTEqS:7HLRojzmI1/s0nb2m6L8LoNH

Score

10^/10

smokeloader pub2 backdoor trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

d546d17fee791f053d1f4c303018921eac58a93c989abdf9b4f2bd3ad7e54572.exe

Resource

win10v2004-20240508-en

smokeloader pub2 backdoor trojan

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

d546d17fee791f053d1f4c303018921eac58a93c989abdf9b4f2bd3ad7e54572.exe

Resource

win11-20240508-en

smokeloader pub2 backdoor trojan

windows11-21h2-x64

3 signatures

150 seconds

Malware Config

Extracted

Family

smokeloader

Botnet

pub2

Targets

- Target
  
  d546d17fee791f053d1f4c303018921eac58a93c989abdf9b4f2bd3ad7e54572
- Size
  
  321KB
- MD5
  
  56f2279c2ca8f728968c09ae3334c3a0
- SHA1
  
  f854f3c3111b6e430b79f32b8030f1c8f229ac70
- SHA256
  
  d546d17fee791f053d1f4c303018921eac58a93c989abdf9b4f2bd3ad7e54572
- SHA512
  
  ccb69243e88c17aa58723159da68ce9c3bb343a0db5f0676a05943d372d6f75439f95c056575f91091d94ce7a5c055671ef48261b30f62b09ac3361f1dc83c64
- SSDEEP
  
  3072:72wLCsojh1pcnIC4Bxyh0i9YsePnbqrme5xlt4LtHrO1Ek1EJxTEqS:7HLRojzmI1/s0nb2m6L8LoNH
Score

10^/10

smokeloader pub2 backdoor trojan
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

smokeloaderpub2backdoortrojan

behavioral2

smokeloaderpub2backdoortrojan

© 2018-2024

Terms | Privacy