Overview

overview

10

Static

static

3

winprofile

windows7-x64

10

winprofile

windows10-1703-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    5684251ebd9215951f23648ead7b419c6bf0829c3e3aab30ff27ed2bcf8604a5

  • Size

    311KB

  • Sample

    240627-2syjdaydnj

  • MD5

    a0b1d7462bc2991e2ad2440fe0612d7c

  • SHA1

    284d2942b6a10fc2d2d2ff11c2ac6d2502fbcb0f

  • SHA256

    5684251ebd9215951f23648ead7b419c6bf0829c3e3aab30ff27ed2bcf8604a5

  • SHA512

    139336682c9dfcd13a99ebe2bbf27f6b5ef918ba76175b9ca304454063076bb25a24124870c567e35f9fe17f738f1d74e4fb2e9ab1ee49b8fb08010a2c94332b

  • SSDEEP

    3072:ZW8phFLMSkIgDPc7fToi/6oMiD+RyV+CR7x/9xn5bUQ3LY0P:ZfpfLNkIGMtLMiaRyV+CR7nUQ

Score
10/10
smokeloaderpub3backdoortrojan

Malware Config

Extracted

Family

smokeloader

Botnet

pub3

Targets

    • Target

      5684251ebd9215951f23648ead7b419c6bf0829c3e3aab30ff27ed2bcf8604a5

    • Size

      311KB

    • MD5

      a0b1d7462bc2991e2ad2440fe0612d7c

    • SHA1

      284d2942b6a10fc2d2d2ff11c2ac6d2502fbcb0f

    • SHA256

      5684251ebd9215951f23648ead7b419c6bf0829c3e3aab30ff27ed2bcf8604a5

    • SHA512

      139336682c9dfcd13a99ebe2bbf27f6b5ef918ba76175b9ca304454063076bb25a24124870c567e35f9fe17f738f1d74e4fb2e9ab1ee49b8fb08010a2c94332b

    • SSDEEP

      3072:ZW8phFLMSkIgDPc7fToi/6oMiD+RyV+CR7x/9xn5bUQ3LY0P:ZfpfLNkIGMtLMiaRyV+CR7nUQ

    Score
    10/10
    smokeloaderpub3backdoortrojan
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

1
T1012

Peripheral Device Discovery

1
T1120

System Information Discovery

1
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks