Malware Analysis – smokeloader – bff503746b3152016b17bb3062ab9a8a

October 5, 2022

Malware Analysis

Score: 10

  • MALWARE FAMILY: smokeloader
  • TAGS:family:smokeloader, backdoor, trojan
  • MD5: bff503746b3152016b17bb3062ab9a8a
  • SHA1: f15e9b16d52548a03361de7320b2c42f085ae332
  • ANALYSIS DATE: 2022-10-05T16:03:39Z
  • TTPS: T1012, T1120, T1082

ScoreMeaningExample
10Known badA malware family was detected.
8-9Likely maliciousOne or more known damaging malware attack patterns were detected.

Examples:
The deleting of shadow copies on Windows.
6-7Shows suspicious behaviourOne or more suspicious actions were detected. The detected actions can be malicious but also have (common) benign uses.

Examples:
Changing file permissions.
Anti-VM behaviour/trying to detect a VM.
2-5Likely benignOne or more interesting behaviours were detected. The detected actions are interesting enough to be notified about but are not directly malicious.
1No (potentially) malicious behaviour was detected.N/A
Tags: , , ,

You may have missed

image

[AKIRA] – Ransomware Victim: Econo-Pak

October 30, 2025
image

[RANSOMHOUSE] – Ransomware Victim: ASKUL

October 30, 2025
image

[AKIRA] – Ransomware Victim: RPI Roofing

October 30, 2025
image

[AKIRA] – Ransomware Victim: The Gerson

October 30, 2025
covenant

CovenantC2 Detected – 89[.]58[.]30[.]49:7443

October 30, 2025