smokeloader | 182d4b1bb89fa551432104444b53490d3b80b12c06e54da1f273648bb76bc976 | Triage

Sharing

General

Target

182d4b1bb89fa551432104444b53490d3b80b12c06e54da1f273648bb76bc976
Size

327KB
Sample

240504-y14tksaa5z
MD5

db0c81f45e3b46e4245a9429157dafe4
SHA1

b8fd8d65424a8b083796075d90429d7677dd46a1
SHA256

182d4b1bb89fa551432104444b53490d3b80b12c06e54da1f273648bb76bc976
SHA512

879c28b5175bf373d16d87e480dd80e7e3f089233483372e9c957c5182675ab80f927689ed2ac3623ded0f2436107a5f80927bae32268b1697c58a98af3892c5
SSDEEP

6144:Vy6NYwR40Z2HH4NPfJirfclezpjKRqBQe:46hR40Z645griezp2sx

Score

10^/10

smokeloader pub1 backdoor trojan

Malware Config

Extracted

Family

smokeloader

Botnet

pub1

Targets

- Target
  
  182d4b1bb89fa551432104444b53490d3b80b12c06e54da1f273648bb76bc976
- Size
  
  327KB
- MD5
  
  db0c81f45e3b46e4245a9429157dafe4
- SHA1
  
  b8fd8d65424a8b083796075d90429d7677dd46a1
- SHA256
  
  182d4b1bb89fa551432104444b53490d3b80b12c06e54da1f273648bb76bc976
- SHA512
  
  879c28b5175bf373d16d87e480dd80e7e3f089233483372e9c957c5182675ab80f927689ed2ac3623ded0f2436107a5f80927bae32268b1697c58a98af3892c5
- SSDEEP
  
  6144:Vy6NYwR40Z2HH4NPfJirfclezpjKRqBQe:46hR40Z645griezp2sx
Score

10^/10

smokeloader pub1 backdoor trojan
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

smokeloaderpub1backdoortrojan

behavioral2

smokeloaderpub1backdoortrojan