smokeloader | 6d99a7978b40b5827f297d0e57dde03dfd72520fabe7f9d0c391d332122ab2e2 | Triage

Submit
Reports

Overview

overview

Static

static

3

cryptolaemus

windows10-2004-x64

cryptolaemus

windows11-21h2-x64

Sharing

General

Target

6d99a7978b40b5827f297d0e57dde03dfd72520fabe7f9d0c391d332122ab2e2
Size

185KB
Sample

240705-rk9asssdka
MD5

a544a03dbb6b1b329987da3568e8badb
SHA1

5b97b972f66aeb9229d0980e33d540cabf8bdbc4
SHA256

6d99a7978b40b5827f297d0e57dde03dfd72520fabe7f9d0c391d332122ab2e2
SHA512

c2c707e79a9ecce3d063c8a5ddc1925e50ced660522a1daf1932d6d1a482d91cdc2c47190ff275fcaeb9418124225dbe431c1c70583d62ff5bea1da35c245535
SSDEEP

3072:pYsio3s3w7txmR95ki2EygVYDVh1R1VMoZTAs3r7G7:Go3sA7fQtVoVJ1P/G

Score

10^/10

smokeloader pub1 backdoor trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

6d99a7978b40b5827f297d0e57dde03dfd72520fabe7f9d0c391d332122ab2e2.exe

Resource

win10v2004-20240704-en

smokeloader pub1 backdoor trojan

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

6d99a7978b40b5827f297d0e57dde03dfd72520fabe7f9d0c391d332122ab2e2.exe

Resource

win11-20240704-en

smokeloader pub1 backdoor trojan

windows11-21h2-x64

3 signatures

150 seconds

Malware Config

Extracted

Family

smokeloader

Botnet

pub1

Targets

- Target
  
  6d99a7978b40b5827f297d0e57dde03dfd72520fabe7f9d0c391d332122ab2e2
- Size
  
  185KB
- MD5
  
  a544a03dbb6b1b329987da3568e8badb
- SHA1
  
  5b97b972f66aeb9229d0980e33d540cabf8bdbc4
- SHA256
  
  6d99a7978b40b5827f297d0e57dde03dfd72520fabe7f9d0c391d332122ab2e2
- SHA512
  
  c2c707e79a9ecce3d063c8a5ddc1925e50ced660522a1daf1932d6d1a482d91cdc2c47190ff275fcaeb9418124225dbe431c1c70583d62ff5bea1da35c245535
- SSDEEP
  
  3072:pYsio3s3w7txmR95ki2EygVYDVh1R1VMoZTAs3r7G7:Go3sA7fQtVoVJ1P/G
Score

10^/10

smokeloader pub1 backdoor trojan
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

smokeloaderpub1backdoortrojan

behavioral2

smokeloaderpub1backdoortrojan

© 2018-2024

Terms | Privacy