smokeloader | 7aa746fd707b5ad14ae0627feffe142b67daff7d903252b4cd2248ee7eee1e05 | Triage

Sharing

General

Target

7aa746fd707b5ad14ae0627feffe142b67daff7d903252b4cd2248ee7eee1e05
Size

213KB
Sample

240509-t3hxnsbf3v
MD5

c3fbd48785255a26ddb73e6b60d84e64
SHA1

b59b729c7fbd394f72087f4bf9991e9fe9f07285
SHA256

7aa746fd707b5ad14ae0627feffe142b67daff7d903252b4cd2248ee7eee1e05
SHA512

a47a5acc8fd7e20710be5ca6826fb3ccab02cf3d813d59ba21a852f1e60f77423c1df09f57d786194ef5ee3fec95b67efb59a1092ef5d666ff86dffda0c01ea6
SSDEEP

3072:B/2KqqtoE844VXKEUfpK9qgtRxv5QHBhO5ruOnDY7Oi:mE84Xz+RxhOBhkh

Score

10^/10

smokeloader pub1 backdoor trojan

Malware Config

Extracted

Family

smokeloader

Botnet

pub1

Targets

- Target
  
  7aa746fd707b5ad14ae0627feffe142b67daff7d903252b4cd2248ee7eee1e05
- Size
  
  213KB
- MD5
  
  c3fbd48785255a26ddb73e6b60d84e64
- SHA1
  
  b59b729c7fbd394f72087f4bf9991e9fe9f07285
- SHA256
  
  7aa746fd707b5ad14ae0627feffe142b67daff7d903252b4cd2248ee7eee1e05
- SHA512
  
  a47a5acc8fd7e20710be5ca6826fb3ccab02cf3d813d59ba21a852f1e60f77423c1df09f57d786194ef5ee3fec95b67efb59a1092ef5d666ff86dffda0c01ea6
- SSDEEP
  
  3072:B/2KqqtoE844VXKEUfpK9qgtRxv5QHBhO5ruOnDY7Oi:mE84Xz+RxhOBhkh
Score

10^/10

smokeloader pub1 backdoor trojan
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

smokeloaderpub1backdoortrojan

behavioral2

smokeloaderpub1backdoortrojan