smokeloader | e4c090899ffe89e438a999cf861a40d64bcc52af9b0cc3f84fb3092d2935ce4b | Triage

Submit
Reports

Overview

overview

Static

static

3

cryptolaemus

windows10-2004-x64

cryptolaemus

windows11-21h2-x64

Sharing

General

Target

e4c090899ffe89e438a999cf861a40d64bcc52af9b0cc3f84fb3092d2935ce4b
Size

185KB
Sample

240705-fjf23svhka
MD5

47dc7063e661afd3a69bec41c3500570
SHA1

28fca3205bccbd80d07855eb9b877b1652afd03d
SHA256

e4c090899ffe89e438a999cf861a40d64bcc52af9b0cc3f84fb3092d2935ce4b
SHA512

4dc66028e2566e418014f1f2e0176cb5fd1ea6ac32515ebbfd4abc92c7fe5964e824eb7d52169530d00b4bdd8b8fd0c44cd4ca5ee9b494049351fc2be4596eb2
SSDEEP

3072:BoOLMjI0uxGySy349mmdKge4r/Z8O6QF8RELSB8FUW7KG:BowME0vySyoIf88IP7

Score

10^/10

smokeloader pub2 backdoor trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

e4c090899ffe89e438a999cf861a40d64bcc52af9b0cc3f84fb3092d2935ce4b.exe

Resource

win10v2004-20240508-en

smokeloader pub2 backdoor trojan

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

e4c090899ffe89e438a999cf861a40d64bcc52af9b0cc3f84fb3092d2935ce4b.exe

Resource

win11-20240704-en

smokeloader pub2 backdoor trojan

windows11-21h2-x64

3 signatures

150 seconds

Malware Config

Extracted

Family

smokeloader

Botnet

pub2

Targets

- Target
  
  e4c090899ffe89e438a999cf861a40d64bcc52af9b0cc3f84fb3092d2935ce4b
- Size
  
  185KB
- MD5
  
  47dc7063e661afd3a69bec41c3500570
- SHA1
  
  28fca3205bccbd80d07855eb9b877b1652afd03d
- SHA256
  
  e4c090899ffe89e438a999cf861a40d64bcc52af9b0cc3f84fb3092d2935ce4b
- SHA512
  
  4dc66028e2566e418014f1f2e0176cb5fd1ea6ac32515ebbfd4abc92c7fe5964e824eb7d52169530d00b4bdd8b8fd0c44cd4ca5ee9b494049351fc2be4596eb2
- SSDEEP
  
  3072:BoOLMjI0uxGySy349mmdKge4r/Z8O6QF8RELSB8FUW7KG:BowME0vySyoIf88IP7
Score

10^/10

smokeloader pub2 backdoor trojan
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

smokeloaderpub2backdoortrojan

behavioral2

smokeloaderpub2backdoortrojan

© 2018-2024

Terms | Privacy