smokeloader | 2cf6202d3a36e7ccc4aba85b7c26d2fb88e52a49512d695e67c4da9bd455ef58 | Triage

Submit
Reports

Overview

overview

Static

static

3

5684251ebd...a5.exe

windows7-x64

5684251ebd...a5.exe

windows10-2004-x64

Sharing

General

Target

a0b1d7462bc2991e2ad2440fe0612d7c.bin
Size

136KB
Sample

240626-dhc8pa1ckh
MD5

c95e524d3066e4d91a9194dacc927ed0
SHA1

b8971da664a994af61e354bc5fa9360fa54aa41c
SHA256

2cf6202d3a36e7ccc4aba85b7c26d2fb88e52a49512d695e67c4da9bd455ef58
SHA512

c53953014325fb4f7c890243f2251337becde266988aa2e03b67c13ad48bd8c8457cb7ee5bcf3b2f1c38a42f2357794294a79e479917168e55b6b0f1e2cb2940
SSDEEP

3072:bjZ5ZlKBieJ7VSj9EO34F4ECDKp0nwHqeJeLcDcSO+EE/EMGxTHN:bjfYHO3L25wTkoRHN

Score

10^/10

smokeloader pub3 backdoor trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

5684251ebd9215951f23648ead7b419c6bf0829c3e3aab30ff27ed2bcf8604a5.exe

Resource

win7-20240611-en

smokeloader pub3 backdoor trojan

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral2

Sample

5684251ebd9215951f23648ead7b419c6bf0829c3e3aab30ff27ed2bcf8604a5.exe

Resource

win10v2004-20240611-en

smokeloader pub3 backdoor trojan

windows10-2004-x64

3 signatures

150 seconds

Malware Config

Extracted

Family

smokeloader

Botnet

pub3

Targets

- Target
  
  5684251ebd9215951f23648ead7b419c6bf0829c3e3aab30ff27ed2bcf8604a5.exe
- Size
  
  311KB
- MD5
  
  a0b1d7462bc2991e2ad2440fe0612d7c
- SHA1
  
  284d2942b6a10fc2d2d2ff11c2ac6d2502fbcb0f
- SHA256
  
  5684251ebd9215951f23648ead7b419c6bf0829c3e3aab30ff27ed2bcf8604a5
- SHA512
  
  139336682c9dfcd13a99ebe2bbf27f6b5ef918ba76175b9ca304454063076bb25a24124870c567e35f9fe17f738f1d74e4fb2e9ab1ee49b8fb08010a2c94332b
- SSDEEP
  
  3072:ZW8phFLMSkIgDPc7fToi/6oMiD+RyV+CR7x/9xn5bUQ3LY0P:ZfpfLNkIGMtLMiaRyV+CR7nUQ
Score

10^/10

smokeloader pub3 backdoor trojan
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

smokeloaderpub3backdoortrojan

behavioral2

smokeloaderpub3backdoortrojan

© 2018-2024

Terms | Privacy