smokeloader | edb1e731c4edafa2aa7049979fc19187def806c6ed15af0ddfd08cc4fedd6dd6 | Triage

Submit
Reports

Overview

overview

Static

static

3

cryptolaemus

windows10-2004-x64

cryptolaemus

windows11-21h2-x64

Sharing

General

Target

edb1e731c4edafa2aa7049979fc19187def806c6ed15af0ddfd08cc4fedd6dd6
Size

191KB
Sample

240704-fkrvzavhpj
MD5

36e0474f1cd6997d131963aaebec31d5
SHA1

09b9e618c15f3acbb1aac14c0122863438089422
SHA256

edb1e731c4edafa2aa7049979fc19187def806c6ed15af0ddfd08cc4fedd6dd6
SHA512

bb4b9a40b50694dae5b3a6cf87dc40c8d8dae1cb1775afc132ff755696be1483fdc33f35b934032d006766621e648aba4ba2c25d3dc9d6c3bf66f9fae909e35b
SSDEEP

3072:Rwnq9s5T+vEE2MBE2jCvWrv35F2dtM41zb3+4tASL/4GE5om1:Rw+eT+l/BEYhqdV7FtASLFeo

Score

10^/10

smokeloader pub1 backdoor trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

edb1e731c4edafa2aa7049979fc19187def806c6ed15af0ddfd08cc4fedd6dd6.exe

Resource

win10v2004-20240611-en

smokeloader pub1 backdoor trojan

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

edb1e731c4edafa2aa7049979fc19187def806c6ed15af0ddfd08cc4fedd6dd6.exe

Resource

win11-20240611-en

smokeloader pub1 backdoor trojan

windows11-21h2-x64

3 signatures

150 seconds

Malware Config

Extracted

Family

smokeloader

Botnet

pub1

Targets

- Target
  
  edb1e731c4edafa2aa7049979fc19187def806c6ed15af0ddfd08cc4fedd6dd6
- Size
  
  191KB
- MD5
  
  36e0474f1cd6997d131963aaebec31d5
- SHA1
  
  09b9e618c15f3acbb1aac14c0122863438089422
- SHA256
  
  edb1e731c4edafa2aa7049979fc19187def806c6ed15af0ddfd08cc4fedd6dd6
- SHA512
  
  bb4b9a40b50694dae5b3a6cf87dc40c8d8dae1cb1775afc132ff755696be1483fdc33f35b934032d006766621e648aba4ba2c25d3dc9d6c3bf66f9fae909e35b
- SSDEEP
  
  3072:Rwnq9s5T+vEE2MBE2jCvWrv35F2dtM41zb3+4tASL/4GE5om1:Rw+eT+l/BEYhqdV7FtASLFeo
Score

10^/10

smokeloader pub1 backdoor trojan
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

smokeloaderpub1backdoortrojan

behavioral2

smokeloaderpub1backdoortrojan

© 2018-2024

Terms | Privacy