smokeloader | 857daf5f0b8b43191ad46d1e7e39a807bf8265a070c7541519e472c246d0be07 | Triage

Submit
Reports

Overview

overview

Static

static

3

cryptolaemus

windows10-2004-x64

cryptolaemus

windows11-21h2-x64

Sharing

General

Target

857daf5f0b8b43191ad46d1e7e39a807bf8265a070c7541519e472c246d0be07
Size

276KB
Sample

240628-t98fxawhrd
MD5

11d26d287c6b0ca663e2d36c44b485e6
SHA1

38e5823826ae66166549a07b239da7e983d1ac77
SHA256

857daf5f0b8b43191ad46d1e7e39a807bf8265a070c7541519e472c246d0be07
SHA512

026bb0e7d8c0c550f0867200da8cdba9312d9aefc61e5483590b713002875ff4bbb4c9832f05fe24e03b91b3a55e542a9ae188429e12c8660bfec25a4eab43c7
SSDEEP

3072:wRM+MLQXqu51dquxfsqZMliYEs1vRoVPOKU5pge/qaO2bhATlTzXmSFqNsyKHm:mzMLQX4qZMlidCvRM9bQ4zXmSQL

Score

10^/10

smokeloader pub2 backdoor trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

857daf5f0b8b43191ad46d1e7e39a807bf8265a070c7541519e472c246d0be07.exe

Resource

win10v2004-20240508-en

smokeloader pub2 backdoor trojan

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

857daf5f0b8b43191ad46d1e7e39a807bf8265a070c7541519e472c246d0be07.exe

Resource

win11-20240611-en

smokeloader pub2 backdoor trojan

windows11-21h2-x64

3 signatures

150 seconds

Malware Config

Extracted

Family

smokeloader

Botnet

pub2

Targets

- Target
  
  857daf5f0b8b43191ad46d1e7e39a807bf8265a070c7541519e472c246d0be07
- Size
  
  276KB
- MD5
  
  11d26d287c6b0ca663e2d36c44b485e6
- SHA1
  
  38e5823826ae66166549a07b239da7e983d1ac77
- SHA256
  
  857daf5f0b8b43191ad46d1e7e39a807bf8265a070c7541519e472c246d0be07
- SHA512
  
  026bb0e7d8c0c550f0867200da8cdba9312d9aefc61e5483590b713002875ff4bbb4c9832f05fe24e03b91b3a55e542a9ae188429e12c8660bfec25a4eab43c7
- SSDEEP
  
  3072:wRM+MLQXqu51dquxfsqZMliYEs1vRoVPOKU5pge/qaO2bhATlTzXmSFqNsyKHm:mzMLQX4qZMlidCvRM9bQ4zXmSQL
Score

10^/10

smokeloader pub2 backdoor trojan
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

smokeloaderpub2backdoortrojan

behavioral2

smokeloaderpub2backdoortrojan

© 2018-2024

Terms | Privacy