smokeloader | 87813a093f8d56fc734ba2fe4b04887b6146c2df107190a5384cb68fe4185a98 | Triage

Submit
Reports

Overview

overview

Static

static

3

cryptolaemus

windows10-2004-x64

cryptolaemus

windows11-21h2-x64

Sharing

General

Target

87813a093f8d56fc734ba2fe4b04887b6146c2df107190a5384cb68fe4185a98
Size

278KB
Sample

240628-xpws6ascrp
MD5

73a79bb75f1b6f55ffc3df7171144ee9
SHA1

53003a82e726a9886af7ceb59fb64ef095f48c53
SHA256

87813a093f8d56fc734ba2fe4b04887b6146c2df107190a5384cb68fe4185a98
SHA512

b18d4f5053aa04e172d07d2b186d2bc8d5ca08f21bb37763f2cdb5c45df7d4fb5ed11a25034952251dd3b5f071c35a4b01de39eac0ed8813ab3489df9f182a8d
SSDEEP

3072:OCH+QLOynu51dqtWPefSq4fc52uYg5Age/qmYATlTzXmSFqNsyKHm:PeQLOyEPefP2uYkbmjzXmSQL

Score

10^/10

smokeloader pub3 backdoor trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

87813a093f8d56fc734ba2fe4b04887b6146c2df107190a5384cb68fe4185a98.exe

Resource

win10v2004-20240508-en

smokeloader pub3 backdoor trojan

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

87813a093f8d56fc734ba2fe4b04887b6146c2df107190a5384cb68fe4185a98.exe

Resource

win11-20240611-en

smokeloader pub3 backdoor trojan

windows11-21h2-x64

3 signatures

150 seconds

Malware Config

Extracted

Family

smokeloader

Botnet

pub3

Targets

- Target
  
  87813a093f8d56fc734ba2fe4b04887b6146c2df107190a5384cb68fe4185a98
- Size
  
  278KB
- MD5
  
  73a79bb75f1b6f55ffc3df7171144ee9
- SHA1
  
  53003a82e726a9886af7ceb59fb64ef095f48c53
- SHA256
  
  87813a093f8d56fc734ba2fe4b04887b6146c2df107190a5384cb68fe4185a98
- SHA512
  
  b18d4f5053aa04e172d07d2b186d2bc8d5ca08f21bb37763f2cdb5c45df7d4fb5ed11a25034952251dd3b5f071c35a4b01de39eac0ed8813ab3489df9f182a8d
- SSDEEP
  
  3072:OCH+QLOynu51dqtWPefSq4fc52uYg5Age/qmYATlTzXmSFqNsyKHm:PeQLOyEPefP2uYkbmjzXmSQL
Score

10^/10

smokeloader pub3 backdoor trojan
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

smokeloaderpub3backdoortrojan

behavioral2

smokeloaderpub3backdoortrojan

© 2018-2024

Terms | Privacy