Overview

overview

10

Static

static

3

cryptolaemus

windows10-2004-x64

10

cryptolaemus

windows11-21h2-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    487d893f6d85731ec5e27e65c863163de9cb7bf8c2f0f18118caa6449c96c922

  • Size

    162KB

  • Sample

    240703-jeq82axajq

  • MD5

    ac7fd6661ae787ba13c4599c8aef8807

  • SHA1

    bf28bf1d44e190e4cea10ddad1992fd3671ed13a

  • SHA256

    487d893f6d85731ec5e27e65c863163de9cb7bf8c2f0f18118caa6449c96c922

  • SHA512

    6938d6824213b5f3903e6857d5372731534dc8eba8beb0a1747b1270caf5800e581b5e7490ca68728dccb700e0e0b15b6034713409e1894bc651ed1de7c905f4

  • SSDEEP

    3072:Od5ZLXxnf6NG3TXQEhGImR8TwXRHHhPaH54YLY7HKm1KuU3:I5ZLhnSNqTg1nmsRZjpqX7

Score
10/10
smokeloaderpub1backdoortrojan

Malware Config

Extracted

Family

smokeloader

Botnet

pub1

Targets

    • Target

      487d893f6d85731ec5e27e65c863163de9cb7bf8c2f0f18118caa6449c96c922

    • Size

      162KB

    • MD5

      ac7fd6661ae787ba13c4599c8aef8807

    • SHA1

      bf28bf1d44e190e4cea10ddad1992fd3671ed13a

    • SHA256

      487d893f6d85731ec5e27e65c863163de9cb7bf8c2f0f18118caa6449c96c922

    • SHA512

      6938d6824213b5f3903e6857d5372731534dc8eba8beb0a1747b1270caf5800e581b5e7490ca68728dccb700e0e0b15b6034713409e1894bc651ed1de7c905f4

    • SSDEEP

      3072:Od5ZLXxnf6NG3TXQEhGImR8TwXRHHhPaH54YLY7HKm1KuU3:I5ZLhnSNqTg1nmsRZjpqX7

    Score
    10/10
    smokeloaderpub1backdoortrojan
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

1
T1012

Peripheral Device Discovery

1
T1120

System Information Discovery

1
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks