smokeloader | 078f586ebb8a22305540fb5982b2521f1b82e4317f286e13bab680fff0a9d164 | Triage

Resubmissions

29/02/2024, 16:06

240229-tkj21sdh7t 10

27/02/2024, 13:03

240227-qat8fshe55 10

27/02/2024, 13:01

240227-p8648shh9w 10

24/02/2024, 15:38

240224-s2555sge7w 10

23/02/2024, 17:47

240223-wddmrsfc51 10

23/02/2024, 16:46

240223-t9yxgaee2z 10

23/02/2024, 14:52

240223-r81nkacd4t 10

23/02/2024, 14:41

240223-r2gbcabb95 10

23/02/2024, 14:40

240223-r1195acb5s 10

23/02/2024, 13:27

240223-qp9xfsge5t 10

Sharing

General

Target

6958ACC382E71103A0B83D20BBBB37D2.exe
Size

232KB
Sample

240223-r1195acb5s
MD5

6958acc382e71103a0b83d20bbbb37d2
SHA1

65bf64dfcabf7bc83e47ffc4360cda022d4dab34
SHA256

078f586ebb8a22305540fb5982b2521f1b82e4317f286e13bab680fff0a9d164
SHA512

ebfa8b6986630b3502409d38cdff54881e4bce48511c7ba4f027345296c29708112c19ec6c9181c4b0188fa1f5cbe17b3c5d44dc07f33858323c677ef9caaeae
SSDEEP

3072:FdfbYSFlTBL/A9OYh6++4hY7gfv9yPQxAVUmZAzsqvj1letKv/jbNRKCnrQbW:PbYSFH/AYYh9vERVUmSAQj1la9

Score

10^/10

smokeloader tfd5 backdoor trojan

Malware Config

Extracted

Family

smokeloader

Botnet

tfd5

Extracted

Family

smokeloader

Version

2022

C2

http://trad-einmyus.com/index.php

http://tradein-myus.com/index.php

http://trade-inmyus.com/index.php

rc4.i32

rc4.i32

Targets

- Target
  
  6958ACC382E71103A0B83D20BBBB37D2.exe
- Size
  
  232KB
- MD5
  
  6958acc382e71103a0b83d20bbbb37d2
- SHA1
  
  65bf64dfcabf7bc83e47ffc4360cda022d4dab34
- SHA256
  
  078f586ebb8a22305540fb5982b2521f1b82e4317f286e13bab680fff0a9d164
- SHA512
  
  ebfa8b6986630b3502409d38cdff54881e4bce48511c7ba4f027345296c29708112c19ec6c9181c4b0188fa1f5cbe17b3c5d44dc07f33858323c677ef9caaeae
- SSDEEP
  
  3072:FdfbYSFlTBL/A9OYh6++4hY7gfv9yPQxAVUmZAzsqvj1letKv/jbNRKCnrQbW:PbYSFH/AYYh9vERVUmSAQj1la9
Score

10^/10

smokeloader tfd5 backdoor trojan
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

smokeloadertfd5backdoortrojan