smokeloader | bccce734cff751f6c6d85b05f30af7be392f67a61e50ec5bddba56abd72e3497 | Triage

Sharing

General

Target

bccce734cff751f6c6d85b05f30af7be392f67a61e50ec5bddba56abd72e3497
Size

317KB
Sample

240423-ym94fabc6s
MD5

74a045df394c01e16f0ebb86a34a0d93
SHA1

20e2a2f88a7036d04186b9cf17e1c2b7961757c9
SHA256

bccce734cff751f6c6d85b05f30af7be392f67a61e50ec5bddba56abd72e3497
SHA512

14b803fba0291947e357cebdb59d97c8720ada39fe2bf67d709a9452b829910ed925bb0136ff943e0384a17e13d3047542c05c4e9630ee5bc7c7d0e40a11157e
SSDEEP

6144:8KtnIbYW29PStWYHZn5Xkg/hNpG5KqbI:htnIbApStnh+7E

Score

10^/10

smokeloader pub1 backdoor trojan

Malware Config

Extracted

Family

smokeloader

Botnet

pub1

Targets

- Target
  
  bccce734cff751f6c6d85b05f30af7be392f67a61e50ec5bddba56abd72e3497
- Size
  
  317KB
- MD5
  
  74a045df394c01e16f0ebb86a34a0d93
- SHA1
  
  20e2a2f88a7036d04186b9cf17e1c2b7961757c9
- SHA256
  
  bccce734cff751f6c6d85b05f30af7be392f67a61e50ec5bddba56abd72e3497
- SHA512
  
  14b803fba0291947e357cebdb59d97c8720ada39fe2bf67d709a9452b829910ed925bb0136ff943e0384a17e13d3047542c05c4e9630ee5bc7c7d0e40a11157e
- SSDEEP
  
  6144:8KtnIbYW29PStWYHZn5Xkg/hNpG5KqbI:htnIbApStnh+7E
Score

10^/10

smokeloader pub1 backdoor trojan
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

smokeloaderpub1backdoortrojan

behavioral2

smokeloaderpub1backdoortrojan