smokeloader | 9a91c781de754567b2ce90a95cffaf0fa43496e29eb6c7437774ce2d73ec21ab | Triage

Sharing

General

Target

9a91c781de754567b2ce90a95cffaf0fa43496e29eb6c7437774ce2d73ec21ab
Size

285KB
Sample

240421-jjpk1aec96
MD5

16c02d2ada3fff0c96177cd7cbd16628
SHA1

e432ff440c163fb78064f2ea18052c4fa7126269
SHA256

9a91c781de754567b2ce90a95cffaf0fa43496e29eb6c7437774ce2d73ec21ab
SHA512

119db6252382ed9086c3080c0241d0462cc8130ee825c518165d46aaeded812c10b4a91cf7731333187dbd19449e05fbf98ffe7d16566edbe2e96afa9bac89a2
SSDEEP

3072:bTlTeen6sBWk+8JntY5HUTGfix3zV4oAT+yjrG73ZWc2xQUNgpG:JhckA5HUTGfiv4oAlE3T2aU

Score

10^/10

smokeloader pub1 backdoor trojan

Malware Config

Extracted

Family

smokeloader

Botnet

pub1

Targets

- Target
  
  9a91c781de754567b2ce90a95cffaf0fa43496e29eb6c7437774ce2d73ec21ab
- Size
  
  285KB
- MD5
  
  16c02d2ada3fff0c96177cd7cbd16628
- SHA1
  
  e432ff440c163fb78064f2ea18052c4fa7126269
- SHA256
  
  9a91c781de754567b2ce90a95cffaf0fa43496e29eb6c7437774ce2d73ec21ab
- SHA512
  
  119db6252382ed9086c3080c0241d0462cc8130ee825c518165d46aaeded812c10b4a91cf7731333187dbd19449e05fbf98ffe7d16566edbe2e96afa9bac89a2
- SSDEEP
  
  3072:bTlTeen6sBWk+8JntY5HUTGfix3zV4oAT+yjrG73ZWc2xQUNgpG:JhckA5HUTGfiv4oAlE3T2aU
Score

10^/10

smokeloader pub1 backdoor trojan
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

smokeloaderpub1backdoortrojan

behavioral2

smokeloaderpub1backdoortrojan