smokeloader | da864a2e1112855b74e4e4d0cfdca5e572795dd84d22807fbabae658b9df89dc | Triage

Submit
Reports

Overview

overview

Static

static

3

cryptolaemus

windows10-2004-x64

cryptolaemus

windows11-21h2-x64

Sharing

General

Target

da864a2e1112855b74e4e4d0cfdca5e572795dd84d22807fbabae658b9df89dc
Size

230KB
Sample

240705-2rjzlazhng
MD5

5160214201e54db091825451adeee8f7
SHA1

90b29d550a396e3122c31c99bc1e07979d1fbbf6
SHA256

da864a2e1112855b74e4e4d0cfdca5e572795dd84d22807fbabae658b9df89dc
SHA512

578751de48e2c91d5d7ae05981cbd5ff8d362684c7fb9c15fecc487d173d9e2c2d6db50efe1fbf8ddfb1b1a5a0876aa1eccac106722e308623b790aa15d9e314
SSDEEP

3072:xI/quXX/mI6H4g1PwM9Mr9+pjlt7WTtfBPsy4iIT:xYqKX/mYglaQDSxBPW

Score

10^/10

smokeloader pub1 backdoor trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

da864a2e1112855b74e4e4d0cfdca5e572795dd84d22807fbabae658b9df89dc.exe

Resource

win10v2004-20240704-en

smokeloader pub1 backdoor trojan

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

da864a2e1112855b74e4e4d0cfdca5e572795dd84d22807fbabae658b9df89dc.exe

Resource

win11-20240704-en

smokeloader pub1 backdoor trojan

windows11-21h2-x64

3 signatures

150 seconds

Malware Config

Extracted

Family

smokeloader

Botnet

pub1

Targets

- Target
  
  da864a2e1112855b74e4e4d0cfdca5e572795dd84d22807fbabae658b9df89dc
- Size
  
  230KB
- MD5
  
  5160214201e54db091825451adeee8f7
- SHA1
  
  90b29d550a396e3122c31c99bc1e07979d1fbbf6
- SHA256
  
  da864a2e1112855b74e4e4d0cfdca5e572795dd84d22807fbabae658b9df89dc
- SHA512
  
  578751de48e2c91d5d7ae05981cbd5ff8d362684c7fb9c15fecc487d173d9e2c2d6db50efe1fbf8ddfb1b1a5a0876aa1eccac106722e308623b790aa15d9e314
- SSDEEP
  
  3072:xI/quXX/mI6H4g1PwM9Mr9+pjlt7WTtfBPsy4iIT:xYqKX/mYglaQDSxBPW
Score

10^/10

smokeloader pub1 backdoor trojan
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

smokeloaderpub1backdoortrojan

behavioral2

smokeloaderpub1backdoortrojan

© 2018-2024

Terms | Privacy