smokeloader | df1cdf2b10d93ac04f178bf471e631953130c3dfab19eb86c266041d532fb272 | Triage

Submit
Reports

Overview

overview

Static

static

3

cryptolaemus

windows10-2004-x64

cryptolaemus

windows11-21h2-x64

Sharing

General

Target

df1cdf2b10d93ac04f178bf471e631953130c3dfab19eb86c266041d532fb272
Size

273KB
Sample

240628-3yx1gawakf
MD5

41917ff64f3c5d2ec390bc2555959edc
SHA1

b729a6d1fba5c42861307cc50281a6e8b3c6bc89
SHA256

df1cdf2b10d93ac04f178bf471e631953130c3dfab19eb86c266041d532fb272
SHA512

894570ad02aba6e762e4d14cb988863621b0fd42d4d4e70b15ae2614764052d56e3653be11bd622dff532f4a40e314c3f3fa8669ff95198905d396fba3a0e948
SSDEEP

3072:D2WLAXEfIAOqKb6uDlpOm4q5ki5CAge/qiATlTzXmGFqNsyKHm:zLAX2xOqqWxIkDhb1zXmGQL

Score

10^/10

smokeloader pub2 backdoor trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

df1cdf2b10d93ac04f178bf471e631953130c3dfab19eb86c266041d532fb272.exe

Resource

win10v2004-20240508-en

smokeloader pub2 backdoor trojan

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

df1cdf2b10d93ac04f178bf471e631953130c3dfab19eb86c266041d532fb272.exe

Resource

win11-20240508-en

smokeloader pub2 backdoor trojan

windows11-21h2-x64

3 signatures

150 seconds

Malware Config

Extracted

Family

smokeloader

Botnet

pub2

Targets

- Target
  
  df1cdf2b10d93ac04f178bf471e631953130c3dfab19eb86c266041d532fb272
- Size
  
  273KB
- MD5
  
  41917ff64f3c5d2ec390bc2555959edc
- SHA1
  
  b729a6d1fba5c42861307cc50281a6e8b3c6bc89
- SHA256
  
  df1cdf2b10d93ac04f178bf471e631953130c3dfab19eb86c266041d532fb272
- SHA512
  
  894570ad02aba6e762e4d14cb988863621b0fd42d4d4e70b15ae2614764052d56e3653be11bd622dff532f4a40e314c3f3fa8669ff95198905d396fba3a0e948
- SSDEEP
  
  3072:D2WLAXEfIAOqKb6uDlpOm4q5ki5CAge/qiATlTzXmGFqNsyKHm:zLAX2xOqqWxIkDhb1zXmGQL
Score

10^/10

smokeloader pub2 backdoor trojan
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

smokeloaderpub2backdoortrojan

behavioral2

smokeloaderpub2backdoortrojan

© 2018-2024

Terms | Privacy