smokeloader | a6c2a7ffb68b797967ad979e51a1330e9f16223e4f5dc8500b0a58741176f83c | Triage

Submit
Reports

Overview

overview

Static

static

3

cryptolaemus

windows10-2004-x64

cryptolaemus

windows11-21h2-x64

Sharing

General

Target

a6c2a7ffb68b797967ad979e51a1330e9f16223e4f5dc8500b0a58741176f83c
Size

163KB
Sample

240703-fa4rsasakq
MD5

0c653f386efe0b014ffc681b49120706
SHA1

dd7ddec0bae7270469fa6cfb9d3d0b7f0c170b54
SHA256

a6c2a7ffb68b797967ad979e51a1330e9f16223e4f5dc8500b0a58741176f83c
SHA512

8323ec5ea07f3c14e63d4ad22106ff71064cb6af9c6fa9aaf50347a5ef69d6dc4618317432ceafc8f05163e81f681eb8fb0dc62bc637909b221372837bbf3523
SSDEEP

3072:pW5NLXxnGu0jM5AJs7a8nInHhPaH5RzQkq1KuU3:c5NLhnGu0Q5ci12+5L7

Score

10^/10

smokeloader pub1 backdoor trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

a6c2a7ffb68b797967ad979e51a1330e9f16223e4f5dc8500b0a58741176f83c.exe

Resource

win10v2004-20240611-en

smokeloader pub1 backdoor trojan

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

a6c2a7ffb68b797967ad979e51a1330e9f16223e4f5dc8500b0a58741176f83c.exe

Resource

win11-20240508-en

smokeloader pub1 backdoor trojan

windows11-21h2-x64

3 signatures

150 seconds

Malware Config

Extracted

Family

smokeloader

Botnet

pub1

Targets

- Target
  
  a6c2a7ffb68b797967ad979e51a1330e9f16223e4f5dc8500b0a58741176f83c
- Size
  
  163KB
- MD5
  
  0c653f386efe0b014ffc681b49120706
- SHA1
  
  dd7ddec0bae7270469fa6cfb9d3d0b7f0c170b54
- SHA256
  
  a6c2a7ffb68b797967ad979e51a1330e9f16223e4f5dc8500b0a58741176f83c
- SHA512
  
  8323ec5ea07f3c14e63d4ad22106ff71064cb6af9c6fa9aaf50347a5ef69d6dc4618317432ceafc8f05163e81f681eb8fb0dc62bc637909b221372837bbf3523
- SSDEEP
  
  3072:pW5NLXxnGu0jM5AJs7a8nInHhPaH5RzQkq1KuU3:c5NLhnGu0Q5ci12+5L7
Score

10^/10

smokeloader pub1 backdoor trojan
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

smokeloaderpub1backdoortrojan

behavioral2

smokeloaderpub1backdoortrojan

© 2018-2024

Terms | Privacy