smokeloader | 6b709b3c69557a26f9ef0400929e18312fe87e5ffc49051cf781c5e9b65cc50d | Triage

Sharing

General

Target

6b709b3c69557a26f9ef0400929e18312fe87e5ffc49051cf781c5e9b65cc50d
Size

206KB
Sample

240501-m35m4sdc9y
MD5

d672139c61dd00d2ee5c00b3baf88def
SHA1

cec8932c31e369118a7928d58bd6a8142afdecd8
SHA256

6b709b3c69557a26f9ef0400929e18312fe87e5ffc49051cf781c5e9b65cc50d
SHA512

fc4c804b36523bf73853dde1a70575d69981d1a7729aa0de48a8bdd37603290323754d064e3f1e36a8b0f47cef4af6d69cc260af6851dc61db4495dd58a590b9
SSDEEP

3072:uFbqqsdmjpHxw7MnGe5w7btSP5hcb8qNFd:uDdqw22cb8q7

Score

10^/10

smokeloader pub1 backdoor trojan

Malware Config

Extracted

Family

smokeloader

Botnet

pub1

Targets

- Target
  
  6b709b3c69557a26f9ef0400929e18312fe87e5ffc49051cf781c5e9b65cc50d
- Size
  
  206KB
- MD5
  
  d672139c61dd00d2ee5c00b3baf88def
- SHA1
  
  cec8932c31e369118a7928d58bd6a8142afdecd8
- SHA256
  
  6b709b3c69557a26f9ef0400929e18312fe87e5ffc49051cf781c5e9b65cc50d
- SHA512
  
  fc4c804b36523bf73853dde1a70575d69981d1a7729aa0de48a8bdd37603290323754d064e3f1e36a8b0f47cef4af6d69cc260af6851dc61db4495dd58a590b9
- SSDEEP
  
  3072:uFbqqsdmjpHxw7MnGe5w7btSP5hcb8qNFd:uDdqw22cb8q7
Score

10^/10

smokeloader pub1 backdoor trojan
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

smokeloaderpub1backdoortrojan

behavioral2

smokeloaderpub1backdoortrojan