Overview

overview

10

Static

static

3

ae3d203311...84.exe

windows7-x64

10

ae3d203311...84.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    62f1460b0af5107e41d99f4ca89ebf4c.bin

  • Size

    140KB

  • Sample

    240707-dzr36svdph

  • MD5

    e9459d6a0c0c729e535cb0ed075b2813

  • SHA1

    3d8b4d194f8372e33962c8a1a9143ff347eb67f8

  • SHA256

    8db49b29d78757d6fca48b7bf73af17430be43aaf54f3d86e63c658cdfe63594

  • SHA512

    eaf0d2bbcb98ba3a7164f89c0c08c98f8aaa839738b32d4eda8f382f5167da12240ffc9cb7a6aeddf9c9b0f3adba97c50822be8c0f6d21b3a6ae95d967f830d9

  • SSDEEP

    3072:eDpXzwiNOqhu5z1bbxZOLr0tFkz/oVW8xQ6SGNmXhSg+hn:elXzjNOTbxLFjuGNyhSg+hn

Score
10/10
smokeloaderpub1backdoortrojan

Malware Config

Extracted

Family

smokeloader

Botnet

pub1

Targets

    • Target

      ae3d2033118b60d6112bf68e9a241d04f80be85f6d329cd397cb16e855e2bc84.exe

    • Size

      229KB

    • MD5

      62f1460b0af5107e41d99f4ca89ebf4c

    • SHA1

      3d0c3cba50a928631146ed512d8a16d3127fb75d

    • SHA256

      ae3d2033118b60d6112bf68e9a241d04f80be85f6d329cd397cb16e855e2bc84

    • SHA512

      e03160b6b55edd9effe0a4ca595397046b8a4678a6f4df5dd9302194ee7dd5a12a081fc08a59a8f999a999d65900dec434f96e1de87359f861ac1c3927dbcdc3

    • SSDEEP

      3072:kI/quXXnMqAdU5H2crGEOgmRdsdOmUTscQigRWzgPsy4iIT:kYqKXnJ0cApR/AczXcPW

    Score
    10/10
    smokeloaderpub1backdoortrojan
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

1
T1012

Peripheral Device Discovery

1
T1120

System Information Discovery

1
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks