smokeloader | b7fe1700223a996296cf3cdae2237e641180d8f076c14e57fceb175766341834 | Triage

Sharing

General

Target

b7fe1700223a996296cf3cdae2237e641180d8f076c14e57fceb175766341834
Size

273KB
Sample

240430-gtatgseb34
MD5

1237334f5e8bf0e242f0a0d42fd75c6b
SHA1

a2bf3c73994135bfa20aa142ad02bf766225011e
SHA256

b7fe1700223a996296cf3cdae2237e641180d8f076c14e57fceb175766341834
SHA512

2e16754752dcc179fc25bb35d1dbb94d8ccad7ac694474b14228ee63fe47b4106b19a2bab8a136bff67f189fd773b52b6df4c6957534280e8a40af4eb04485c0
SSDEEP

6144:3JcHHIYDxeKgUkMuM6+y2Ph5j5CcGLYW4wmV:3eHoYDx3QwyGh55SY2mV

Score

10^/10

smokeloader pub1 backdoor trojan

Malware Config

Extracted

Family

smokeloader

Botnet

pub1

Targets

- Target
  
  b7fe1700223a996296cf3cdae2237e641180d8f076c14e57fceb175766341834
- Size
  
  273KB
- MD5
  
  1237334f5e8bf0e242f0a0d42fd75c6b
- SHA1
  
  a2bf3c73994135bfa20aa142ad02bf766225011e
- SHA256
  
  b7fe1700223a996296cf3cdae2237e641180d8f076c14e57fceb175766341834
- SHA512
  
  2e16754752dcc179fc25bb35d1dbb94d8ccad7ac694474b14228ee63fe47b4106b19a2bab8a136bff67f189fd773b52b6df4c6957534280e8a40af4eb04485c0
- SSDEEP
  
  6144:3JcHHIYDxeKgUkMuM6+y2Ph5j5CcGLYW4wmV:3eHoYDx3QwyGh55SY2mV
Score

10^/10

smokeloader pub1 backdoor trojan
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

smokeloaderpub1backdoortrojan

behavioral2

smokeloaderpub1backdoortrojan