smokeloader | b0d1b516d2be15dfc52bb84e1ee96b1d1895fd44b6990fe885817291ecc98250 | Triage

Submit
Reports

Overview

overview

Static

static

3

cryptolaemus

windows10-2004-x64

cryptolaemus

windows11-21h2-x64

Sharing

General

Target

b0d1b516d2be15dfc52bb84e1ee96b1d1895fd44b6990fe885817291ecc98250
Size

311KB
Sample

240627-maxrssydmn
MD5

dd5373eb9f4cf0b2f64da29b04d885d2
SHA1

6fa6c0160b58745e9dbe708221db2a963fb6b1ec
SHA256

b0d1b516d2be15dfc52bb84e1ee96b1d1895fd44b6990fe885817291ecc98250
SHA512

fa567c8189ba08bbb0f79d7f18c4fb14ad441f6824ef01d635e99dfd59e5d09c7d802693e771f52fa3983f99bdab4d3f68cdaa03e4dc2fa92caa020a7cace147
SSDEEP

3072:fC406L974BzV0ESoVdN9tElgZtLocMA/5BQQMZ2eDVcDniABNY:fCd6L9MtKELd+lgLntMQMTyD6

Score

10^/10

smokeloader pub2 backdoor trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

b0d1b516d2be15dfc52bb84e1ee96b1d1895fd44b6990fe885817291ecc98250.exe

Resource

win10v2004-20240611-en

smokeloader pub2 backdoor trojan

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

b0d1b516d2be15dfc52bb84e1ee96b1d1895fd44b6990fe885817291ecc98250.exe

Resource

win11-20240508-en

smokeloader pub2 backdoor trojan

windows11-21h2-x64

3 signatures

150 seconds

Malware Config

Extracted

Family

smokeloader

Botnet

pub2

Targets

- Target
  
  b0d1b516d2be15dfc52bb84e1ee96b1d1895fd44b6990fe885817291ecc98250
- Size
  
  311KB
- MD5
  
  dd5373eb9f4cf0b2f64da29b04d885d2
- SHA1
  
  6fa6c0160b58745e9dbe708221db2a963fb6b1ec
- SHA256
  
  b0d1b516d2be15dfc52bb84e1ee96b1d1895fd44b6990fe885817291ecc98250
- SHA512
  
  fa567c8189ba08bbb0f79d7f18c4fb14ad441f6824ef01d635e99dfd59e5d09c7d802693e771f52fa3983f99bdab4d3f68cdaa03e4dc2fa92caa020a7cace147
- SSDEEP
  
  3072:fC406L974BzV0ESoVdN9tElgZtLocMA/5BQQMZ2eDVcDniABNY:fCd6L9MtKELd+lgLntMQMTyD6
Score

10^/10

smokeloader pub2 backdoor trojan
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

smokeloaderpub2backdoortrojan

behavioral2

smokeloaderpub2backdoortrojan

© 2018-2024

Terms | Privacy