smokeloader | 2bf758ec68ee38fb0e7bc577e3f8f0e3be2da66e73ccfb1328b8da6a496840c9 | Triage

Submit
Reports

Overview

overview

Static

static

3

27fdfbc4a5...48.exe

windows7-x64

27fdfbc4a5...48.exe

windows10-2004-x64

Sharing

General

Target

27fdfbc4a5388e3c43fb79d75ee2b048.exe
Size

172KB
Sample

240703-gfqb1szepg
MD5

27fdfbc4a5388e3c43fb79d75ee2b048
SHA1

8e3bbf0f0a899b8bb2eac42830081aff222a87a8
SHA256

2bf758ec68ee38fb0e7bc577e3f8f0e3be2da66e73ccfb1328b8da6a496840c9
SHA512

8bec478d14a02e5e88e4164bd75c7c206b4b41d7e8e122a594c219ba85b0ce30c0926634eaa0a6f5cd2527dadfa826c6684870e4558b04b2e1c94b0a8b9ab40e
SSDEEP

3072:1t50LNHDm3D6u39Efajf33A3lXhPtP5vtLgvl1KuU3:D50LNHDUD6uyA3AbDCvS7

Score

10^/10

smokeloader pub2 backdoor trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

27fdfbc4a5388e3c43fb79d75ee2b048.exe

Resource

win7-20240508-en

smokeloader pub2 backdoor trojan

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral2

Sample

27fdfbc4a5388e3c43fb79d75ee2b048.exe

Resource

win10v2004-20240508-en

smokeloader pub2 backdoor trojan

windows10-2004-x64

3 signatures

150 seconds

Malware Config

Extracted

Family

smokeloader

Botnet

pub2

Targets

- Target
  
  27fdfbc4a5388e3c43fb79d75ee2b048.exe
- Size
  
  172KB
- MD5
  
  27fdfbc4a5388e3c43fb79d75ee2b048
- SHA1
  
  8e3bbf0f0a899b8bb2eac42830081aff222a87a8
- SHA256
  
  2bf758ec68ee38fb0e7bc577e3f8f0e3be2da66e73ccfb1328b8da6a496840c9
- SHA512
  
  8bec478d14a02e5e88e4164bd75c7c206b4b41d7e8e122a594c219ba85b0ce30c0926634eaa0a6f5cd2527dadfa826c6684870e4558b04b2e1c94b0a8b9ab40e
- SSDEEP
  
  3072:1t50LNHDm3D6u39Efajf33A3lXhPtP5vtLgvl1KuU3:D50LNHDUD6uyA3AbDCvS7
Score

10^/10

smokeloader pub2 backdoor trojan
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

smokeloaderpub2backdoortrojan

behavioral2

smokeloaderpub2backdoortrojan

© 2018-2024

Terms | Privacy