Overview

overview

10

Static

static

3

cryptolaemus

windows10-2004-x64

10

cryptolaemus

windows11-21h2-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2c44e489d74c7ee89e20071f69047ace65b47c58d80f19c6778d6c8509aff1da

  • Size

    187KB

  • Sample

    240704-3n3g7sycmc

  • MD5

    e4e56002e0f7dcee0690b01e135be8c6

  • SHA1

    9a5068c32ffeb2caeb752a396f5dcfeb295c7c7f

  • SHA256

    2c44e489d74c7ee89e20071f69047ace65b47c58d80f19c6778d6c8509aff1da

  • SHA512

    813a394a64b53c1026c4c6d0f1b6542f285402d0bc1fb2b56f56fd53a5d6366a2c1ff88e50b5923b89c249020093dbcdae2ffa0bf47b3675a36af315e6915d0d

  • SSDEEP

    3072:0SbkvkzLFwhLtaqK50Bi1mYUrnLfzlopgKMNbPCNQuCAdbzW:0S+kYaqK50uUbLpGWPCNPdb

Score
10/10
smokeloaderpub2backdoortrojan

Malware Config

Extracted

Family

smokeloader

Botnet

pub2

Targets

    • Target

      2c44e489d74c7ee89e20071f69047ace65b47c58d80f19c6778d6c8509aff1da

    • Size

      187KB

    • MD5

      e4e56002e0f7dcee0690b01e135be8c6

    • SHA1

      9a5068c32ffeb2caeb752a396f5dcfeb295c7c7f

    • SHA256

      2c44e489d74c7ee89e20071f69047ace65b47c58d80f19c6778d6c8509aff1da

    • SHA512

      813a394a64b53c1026c4c6d0f1b6542f285402d0bc1fb2b56f56fd53a5d6366a2c1ff88e50b5923b89c249020093dbcdae2ffa0bf47b3675a36af315e6915d0d

    • SSDEEP

      3072:0SbkvkzLFwhLtaqK50Bi1mYUrnLfzlopgKMNbPCNQuCAdbzW:0S+kYaqK50uUbLpGWPCNPdb

    Score
    10/10
    smokeloaderpub2backdoortrojan
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

1
T1012

Peripheral Device Discovery

1
T1120

System Information Discovery

1
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks