smokeloader

General

Target

bb23328be7ab0ab9d776f2ebaef983abac03ca76e54c6227d9b4f8f906b5eec3
Size

147KB
Sample

240417-rtn18aca34
MD5

a001fc0bcaefcb9be408adaa6c793bbc
SHA1

c84cba9556030237a91cf6d376c69c51416a363d
SHA256

bb23328be7ab0ab9d776f2ebaef983abac03ca76e54c6227d9b4f8f906b5eec3
SHA512

5f4d53292cde6bfa592d741178d95ac6c02d028c518aeefd63c668e6c1354cc53c8811106c2a5b31d9789d6d7176098306dacff4dc87843ec42f8715f8a025f2
SSDEEP

3072:48z26qVJsGtIaL5oOWTtjyZ82471Vq4q+1K9oOO0xopDrFLrXJe:4Wqr5tX6T4c1V9HMysse

Score

10^/10

Malware Config

Extracted

Family

smokeloader

Botnet

pub1

Extracted

Family

smokeloader

Version

2022

C2

http://sjyey.com/tmp/index.php

http://babonwo.ru/tmp/index.php

http://mth.com.ua/tmp/index.php

http://piratia.pw/tmp/index.php

http://go-piratia.ru/tmp/index.php

rc4.i32

Targets

- Target
  
  1f5f28c0501892a2003905bbf282fac8d46fa1ba8146fc3468e66b4f492b945c.exe
- Size
  
  244KB
- MD5
  
  c5405d1c50acf79fbfc26df4ae173c14
- SHA1
  
  6a3ede62744053fc7e3d54c0767de1b965f8f8aa
- SHA256
  
  1f5f28c0501892a2003905bbf282fac8d46fa1ba8146fc3468e66b4f492b945c
- SHA512
  
  5a327560cfe3d3b78869ad1a937614ba60831fb83a5f784efc990726b65f22e9490b084b6c7a0c28eca868940c3338ba4859d0ec913b9d463b1143159ec6ad14
- SSDEEP
  
  3072:4T5GKwmrrRmuzzc8xFhc/u2j9XRjoHFfMDrkbbN6rxlVZZhUm1hmB:kGKw4ASS22jllolfM8N6rxlVram1h
Score

10^/10

smokeloader pub1 backdoor trojan
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
- Deletes itself
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

1

T1012

Peripheral Device Discovery

1

T1120

System Information Discovery

1

T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

Sharing

General

Malware Config

Extracted

Extracted

Targets

Deletes itself

Executes dropped EXE

MITRE ATT&CK Matrix ATT&CK v13

Tasks

static1

behavioral1

behavioral2