Overview

overview

10

Static

static

3

cryptolaemus

windows10-2004-x64

10

cryptolaemus

windows11-21h2-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    5eb16a168f5ca49b4c81fca5224616e2553500e801e72732b29d8c01dd85928a

  • Size

    188KB

  • Sample

    240626-x3a4lsyhkb

  • MD5

    77e0dbdf82f1ba12a883d7754e2c0aa2

  • SHA1

    ed3960f159928e84cbb93fae571a0b552d2baddb

  • SHA256

    5eb16a168f5ca49b4c81fca5224616e2553500e801e72732b29d8c01dd85928a

  • SHA512

    0977623e0085842ee7b969f20ab04ade2ab47efe9af91b71289931f1c1f5794ebd44b7c04a61c7839c22ad173b36873048124f20ea96ed3af886c14a973f7287

  • SSDEEP

    3072:6HH2szmkFCxikht8LfQz96MtFj0rBs7xP5Y+WlWvd8foUv:6HhmkMxikP8QggQBsN5YvWvo

Score
10/10
smokeloaderpub2backdoortrojan

Malware Config

Extracted

Family

smokeloader

Botnet

pub2

Targets

    • Target

      5eb16a168f5ca49b4c81fca5224616e2553500e801e72732b29d8c01dd85928a

    • Size

      188KB

    • MD5

      77e0dbdf82f1ba12a883d7754e2c0aa2

    • SHA1

      ed3960f159928e84cbb93fae571a0b552d2baddb

    • SHA256

      5eb16a168f5ca49b4c81fca5224616e2553500e801e72732b29d8c01dd85928a

    • SHA512

      0977623e0085842ee7b969f20ab04ade2ab47efe9af91b71289931f1c1f5794ebd44b7c04a61c7839c22ad173b36873048124f20ea96ed3af886c14a973f7287

    • SSDEEP

      3072:6HH2szmkFCxikht8LfQz96MtFj0rBs7xP5Y+WlWvd8foUv:6HhmkMxikP8QggQBsN5YvWvo

    Score
    10/10
    smokeloaderpub2backdoortrojan
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

1
T1012

Peripheral Device Discovery

1
T1120

System Information Discovery

1
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks