Overview

overview

10

Static

static

3

cryptolaemus

windows10-2004-x64

10

cryptolaemus

windows11-21h2-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2f8fe9529097fcec7fd0e37f9448618ba96c3b985efd31eadba2c717504eb3f4

  • Size

    188KB

  • Sample

    240626-s1t2gs1bnd

  • MD5

    eae730d3b7b9b11b2cd3c4389d47429d

  • SHA1

    06df3e60552ca7db7e410919c10c8284a96f6d2e

  • SHA256

    2f8fe9529097fcec7fd0e37f9448618ba96c3b985efd31eadba2c717504eb3f4

  • SHA512

    3072a467352f043c884faea9a53621f5b4faefd06bc4e6682e83438b2fcde74c4a7fcba572265ce0c0b96e5b84e86acaead4f961a80450289eb252bb8868b470

  • SSDEEP

    3072:+rNAsjgILBh2YsZZ+pRSQnfuZ4fqDHM4wJGgqS/sfte:+ljRLX2Ys2pFy2qDn6GGk

Score
10/10
smokeloaderpub2backdoortrojan

Malware Config

Extracted

Family

smokeloader

Botnet

pub2

Targets

    • Target

      2f8fe9529097fcec7fd0e37f9448618ba96c3b985efd31eadba2c717504eb3f4

    • Size

      188KB

    • MD5

      eae730d3b7b9b11b2cd3c4389d47429d

    • SHA1

      06df3e60552ca7db7e410919c10c8284a96f6d2e

    • SHA256

      2f8fe9529097fcec7fd0e37f9448618ba96c3b985efd31eadba2c717504eb3f4

    • SHA512

      3072a467352f043c884faea9a53621f5b4faefd06bc4e6682e83438b2fcde74c4a7fcba572265ce0c0b96e5b84e86acaead4f961a80450289eb252bb8868b470

    • SSDEEP

      3072:+rNAsjgILBh2YsZZ+pRSQnfuZ4fqDHM4wJGgqS/sfte:+ljRLX2Ys2pFy2qDn6GGk

    Score
    10/10
    smokeloaderpub2backdoortrojan
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

1
T1012

Peripheral Device Discovery

1
T1120

System Information Discovery

1
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks