smokeloader

General

Target

5c14580dcba3fa26a6c97cef0f4c829b6ff351d5d6d4e8bfb393fdbadcb54bf0
Size

205KB
Sample

231012-s1dphagh8y
MD5

25b3bbfc2bc54594440da94dcb7c6a43
SHA1

02b58ff94f7974de488fa3776bb66e7039c53674
SHA256

5c14580dcba3fa26a6c97cef0f4c829b6ff351d5d6d4e8bfb393fdbadcb54bf0
SHA512

645fece87d51c4f70a4ce7ef86538770cd80736a9ce8e713968411fdf347b59649791cc7cced9506e8984959c3c2abec2fa6af6c9581affe7c547dcd617065fb
SSDEEP

3072:Qym4/K5LnfgU4Zw1/+B8Q40D3fmIk4YAlG0didKM3MS5WP5rTt:Q4C5LfgU4G1/s4KeIk4H0SyZM9RrT

Score

10^/10

Malware Config

Extracted

Family

smokeloader

Version

2022

C2

http://potunulit.org/

http://hutnilior.net/

http://bulimu55t.net/

http://soryytlic4.net/

http://novanosa5org.org/

http://nuljjjnuli.org/

http://tolilolihul.net/

http://somatoka51hub.net/

http://hujukui3.net/

http://bukubuka1.net/

http://golilopaster.org/

http://newzelannd66.org/

http://otriluyttn.org/

rc4.i32

Targets

- Target
  
  5c14580dcba3fa26a6c97cef0f4c829b6ff351d5d6d4e8bfb393fdbadcb54bf0
- Size
  
  205KB
- MD5
  
  25b3bbfc2bc54594440da94dcb7c6a43
- SHA1
  
  02b58ff94f7974de488fa3776bb66e7039c53674
- SHA256
  
  5c14580dcba3fa26a6c97cef0f4c829b6ff351d5d6d4e8bfb393fdbadcb54bf0
- SHA512
  
  645fece87d51c4f70a4ce7ef86538770cd80736a9ce8e713968411fdf347b59649791cc7cced9506e8984959c3c2abec2fa6af6c9581affe7c547dcd617065fb
- SSDEEP
  
  3072:Qym4/K5LnfgU4Zw1/+B8Q40D3fmIk4YAlG0didKM3MS5WP5rTt:Q4C5LfgU4G1/s4KeIk4H0SyZM9RrT
Score

10^/10

smokeloader backdoor trojan
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
- Deletes itself
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

1

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Extracted

Targets

Deletes itself

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2