smokeloader | de118ec23598a98019ab5eeca5edcb4148b4de10fdf6ce3ce90cbaab6b690e23 | Triage

Submit
Reports

Overview

overview

Static

static

3

de118ec235...23.exe

windows7-x64

de118ec235...23.exe

windows10-2004-x64

Sharing

General

Target

de118ec23598a98019ab5eeca5edcb4148b4de10fdf6ce3ce90cbaab6b690e23
Size

217KB
Sample

240626-ed1zmatape
MD5

044ea3ed2b083a9b96463273663c054a
SHA1

42bcc38453e3a9bc8eef1e92bf98312916e8b07c
SHA256

de118ec23598a98019ab5eeca5edcb4148b4de10fdf6ce3ce90cbaab6b690e23
SHA512

250502f332878cf389a10823287d4881cf24c790bde661fdc6c500b474c01cbfafcae6ef435823796d91f2b10f1673641442452b8f816f5fdc573c4238f607a1
SSDEEP

3072:kuHgAGMh2kt4j2H95A58IUnD8M9O/xCR8NB5dCXWBsK:kgGMhht4KokD8M9aS8NB5Mx

Score

10^/10

smokeloader pub2 backdoor trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

de118ec23598a98019ab5eeca5edcb4148b4de10fdf6ce3ce90cbaab6b690e23.exe

Resource

win7-20240508-en

smokeloader pub2 backdoor trojan

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral2

Sample

de118ec23598a98019ab5eeca5edcb4148b4de10fdf6ce3ce90cbaab6b690e23.exe

Resource

win10v2004-20240611-en

smokeloader pub2 backdoor trojan

windows10-2004-x64

3 signatures

150 seconds

Malware Config

Extracted

Family

smokeloader

Botnet

pub2

Targets

- Target
  
  de118ec23598a98019ab5eeca5edcb4148b4de10fdf6ce3ce90cbaab6b690e23
- Size
  
  217KB
- MD5
  
  044ea3ed2b083a9b96463273663c054a
- SHA1
  
  42bcc38453e3a9bc8eef1e92bf98312916e8b07c
- SHA256
  
  de118ec23598a98019ab5eeca5edcb4148b4de10fdf6ce3ce90cbaab6b690e23
- SHA512
  
  250502f332878cf389a10823287d4881cf24c790bde661fdc6c500b474c01cbfafcae6ef435823796d91f2b10f1673641442452b8f816f5fdc573c4238f607a1
- SSDEEP
  
  3072:kuHgAGMh2kt4j2H95A58IUnD8M9O/xCR8NB5dCXWBsK:kgGMhht4KokD8M9aS8NB5Mx
Score

10^/10

smokeloader pub2 backdoor trojan
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

smokeloaderpub2backdoortrojan

behavioral2

smokeloaderpub2backdoortrojan

© 2018-2024

Terms | Privacy