smokeloader

General

Target

b601d81d4004f43c394a697140a9b626.bin
Size

133KB
Sample

231011-psfbkshg67
MD5

1916e5da0595ffe6f5917a37caf7c751
SHA1

76d738dec81e7c87be16ffa2ce2eacc282d98344
SHA256

121ddd3eeee006709cd328ee32fc0a1078925be67fe6be8af8a3ced1de941a6d
SHA512

9cd45dd203823bb5640461e61e4fc69e9c120232e5e422c878da85c7b0f51522c2acc52c451f34449c08184ce2e6e7023541f32c9611c1733ff896c36270bf41
SSDEEP

3072:EzaPS3Z+ebuUV6entK+rtbV7Sr3FRQ9WjDY3TytvoGvcrbu2r9N19Xv:kaP6ZBuUvnVrt183FRqTyPvibTN19/

Score

10^/10

Malware Config

Extracted

Family

smokeloader

Version

2022

C2

http://potunulit.org/

http://hutnilior.net/

http://bulimu55t.net/

http://soryytlic4.net/

http://novanosa5org.org/

http://nuljjjnuli.org/

http://tolilolihul.net/

http://somatoka51hub.net/

http://hujukui3.net/

http://bukubuka1.net/

http://golilopaster.org/

http://newzelannd66.org/

http://otriluyttn.org/

rc4.i32

Targets

- Target
  
  dc8b62f26d484155e682b99547dc4861f2bf10fe7f2c2ff29ff948295022ab66.exe
- Size
  
  201KB
- MD5
  
  b601d81d4004f43c394a697140a9b626
- SHA1
  
  c37b8c7e88d029960d156b9bb5fef32b3bef6dfc
- SHA256
  
  dc8b62f26d484155e682b99547dc4861f2bf10fe7f2c2ff29ff948295022ab66
- SHA512
  
  6e523379f47b34bd31ffdad41a6df19950e9da0ae24ac8cf144d4333a518aa859f3be2bbc2ba6464c29e5db5c084c8b53f047cb6acd16ba4a35ace307651b12a
- SSDEEP
  
  3072:1y+Y6jryfEpKAiGMipeNOJ5jjaJCz3zUPq56+bRT:8+Y6jWfRAswjt++b
Score

10^/10

smokeloader backdoor trojan
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
- Deletes itself
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

1

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Extracted

Targets

Deletes itself

Executes dropped EXE

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2