smokeloader | a773aa18c924c53e6d728cc0bb6a1a72ea6fdaac4536dd4d33aecb420f6aa1b0 | Triage

Submit
Reports

Overview

overview

Static

static

3

1f8f27ac53...18.exe

windows7-x64

1f8f27ac53...18.exe

windows10-2004-x64

Sharing

General

Target

1f8f27ac53543bb015ef6c44b4da5f53_JaffaCakes118
Size

252KB
Sample

240702-rb7qlswajb
MD5

1f8f27ac53543bb015ef6c44b4da5f53
SHA1

21941fd2c5f3dd52a021c58bbda4ba24371c2e24
SHA256

a773aa18c924c53e6d728cc0bb6a1a72ea6fdaac4536dd4d33aecb420f6aa1b0
SHA512

5081d9b59c1460b658d720d3cad9677c92ddf0ce8d1b7fa62bd3138b59e625ce10995c0659094815499a5fd3e2ff57e97baa3d4302c6f1e6bc9656d55a008348
SSDEEP

6144:iVYm4fLO5mu5aPjaVH81QM8ROhxxpeTr/ekI:aYjkmu5aPj8cz5zxp6L

Score

10^/10

smokeloader backdoor trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

1f8f27ac53543bb015ef6c44b4da5f53_JaffaCakes118.exe

Resource

win7-20240508-en

smokeloader backdoor trojan

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

1f8f27ac53543bb015ef6c44b4da5f53_JaffaCakes118.exe

Resource

win10v2004-20240611-en

smokeloader backdoor trojan

windows10-2004-x64

4 signatures

150 seconds

Malware Config

Targets

- Target
  
  1f8f27ac53543bb015ef6c44b4da5f53_JaffaCakes118
- Size
  
  252KB
- MD5
  
  1f8f27ac53543bb015ef6c44b4da5f53
- SHA1
  
  21941fd2c5f3dd52a021c58bbda4ba24371c2e24
- SHA256
  
  a773aa18c924c53e6d728cc0bb6a1a72ea6fdaac4536dd4d33aecb420f6aa1b0
- SHA512
  
  5081d9b59c1460b658d720d3cad9677c92ddf0ce8d1b7fa62bd3138b59e625ce10995c0659094815499a5fd3e2ff57e97baa3d4302c6f1e6bc9656d55a008348
- SSDEEP
  
  6144:iVYm4fLO5mu5aPjaVH81QM8ROhxxpeTr/ekI:aYjkmu5aPj8cz5zxp6L
Score

10^/10

smokeloader backdoor trojan
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

smokeloaderbackdoortrojan

behavioral2

smokeloaderbackdoortrojan

© 2018-2024

Terms | Privacy