smokeloader | 1e7fb39c52ba502920d98374e0cdf8a2447c737bd0b88c06839e81be3a751688 | Triage

Submit
Reports

Overview

overview

Static

static

3

cryptolaemus

windows10-2004-x64

cryptolaemus

windows11-21h2-x64

Sharing

General

Target

1e7fb39c52ba502920d98374e0cdf8a2447c737bd0b88c06839e81be3a751688
Size

211KB
Sample

240629-pw69ga1anp
MD5

1409b5a7ac2a6be45fa954730b058da4
SHA1

00eab66887ff6ff4d6325d8a0e74adb624faf6de
SHA256

1e7fb39c52ba502920d98374e0cdf8a2447c737bd0b88c06839e81be3a751688
SHA512

af224d8fda6b8c6df5aae108dc5d300fef45deab525109fc8d61498714d8b037bb63f2276e163c7997566c336fe6ed884b70282986e6ebab22bfbbe6071d5642
SSDEEP

3072:SIJoMdlOBVvu8OnD7F7CE4BOe3uqHh+JJGmkx8:/dlOrvg0E4wQQJ2

Score

10^/10

smokeloader pub2 backdoor trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

1e7fb39c52ba502920d98374e0cdf8a2447c737bd0b88c06839e81be3a751688.exe

Resource

win10v2004-20240611-en

smokeloader pub2 backdoor trojan

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

1e7fb39c52ba502920d98374e0cdf8a2447c737bd0b88c06839e81be3a751688.exe

Resource

win11-20240508-en

smokeloader pub2 backdoor trojan

windows11-21h2-x64

3 signatures

150 seconds

Malware Config

Extracted

Family

smokeloader

Botnet

pub2

Targets

- Target
  
  1e7fb39c52ba502920d98374e0cdf8a2447c737bd0b88c06839e81be3a751688
- Size
  
  211KB
- MD5
  
  1409b5a7ac2a6be45fa954730b058da4
- SHA1
  
  00eab66887ff6ff4d6325d8a0e74adb624faf6de
- SHA256
  
  1e7fb39c52ba502920d98374e0cdf8a2447c737bd0b88c06839e81be3a751688
- SHA512
  
  af224d8fda6b8c6df5aae108dc5d300fef45deab525109fc8d61498714d8b037bb63f2276e163c7997566c336fe6ed884b70282986e6ebab22bfbbe6071d5642
- SSDEEP
  
  3072:SIJoMdlOBVvu8OnD7F7CE4BOe3uqHh+JJGmkx8:/dlOrvg0E4wQQJ2
Score

10^/10

smokeloader pub2 backdoor trojan
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

smokeloaderpub2backdoortrojan

behavioral2

smokeloaderpub2backdoortrojan

© 2018-2024

Terms | Privacy