smokeloader

General

Target

0d62d720f6d3ac879fee67b04c8076e1311144d0e4fab96d5b7efacd85496e99
Size

202KB
Sample

240107-17lyfsfceq
MD5

4ae2b1dc7bfdf0ddb61a679767bf504b
SHA1

71447d0fe0db3ceace91dec5ca066dc46918f2a4
SHA256

0d62d720f6d3ac879fee67b04c8076e1311144d0e4fab96d5b7efacd85496e99
SHA512

bc20aabcd1681dbd142ca3199865a2feede35dcd5c5734ecbb575758488131856da70e4066e7426dd56f6b71b1712cc01a732b6f7b786afe6ce62d7c416546e8
SSDEEP

3072:iWKxaOMqLfy1wHTJrI8C795OMxhG6WPdZ1Wm8XFV05Xj4D9:rK/LK2HFrhIAPdZ4muEM

Score

10^/10

Malware Config

Extracted

Family

smokeloader

Botnet

pub1

Extracted

Family

smokeloader

Version

2022

C2

http://gxutc2c.com/tmp/index.php

http://proekt8.ru/tmp/index.php

http://mth.com.ua/tmp/index.php

http://pirateking.online/tmp/index.php

http://piratia.pw/tmp/index.php

http://go-piratia.ru/tmp/index.php

rc4.i32

Targets

- Target
  
  0d62d720f6d3ac879fee67b04c8076e1311144d0e4fab96d5b7efacd85496e99
- Size
  
  202KB
- MD5
  
  4ae2b1dc7bfdf0ddb61a679767bf504b
- SHA1
  
  71447d0fe0db3ceace91dec5ca066dc46918f2a4
- SHA256
  
  0d62d720f6d3ac879fee67b04c8076e1311144d0e4fab96d5b7efacd85496e99
- SHA512
  
  bc20aabcd1681dbd142ca3199865a2feede35dcd5c5734ecbb575758488131856da70e4066e7426dd56f6b71b1712cc01a732b6f7b786afe6ce62d7c416546e8
- SSDEEP
  
  3072:iWKxaOMqLfy1wHTJrI8C795OMxhG6WPdZ1Wm8XFV05Xj4D9:rK/LK2HFrhIAPdZ4muEM
Score

10^/10

smokeloader pub1 backdoor trojan
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
- Deletes itself
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

1

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Extracted

Extracted

Targets

Deletes itself

Executes dropped EXE

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2