smokeloader | 3028459a5fae8eb0d0d11c38386b5fdced16faa03b7130fa583078b8e5b0730c | Triage

Sharing

General

Target

3028459a5fae8eb0d0d11c38386b5fdced16faa03b7130fa583078b8e5b0730c
Size

206KB
Sample

240515-qct1gaah96
MD5

c805de268b14d8c76d9370c089bd6505
SHA1

f1f12ce4732f0e09f5ff8bff14aa6ecb045816b0
SHA256

3028459a5fae8eb0d0d11c38386b5fdced16faa03b7130fa583078b8e5b0730c
SHA512

03a02548f9233d4da99947348bf777c67da94c5cbd4bfa1654812e63b6462dd4229f17bdc1785a565760f5bc660510eab76ec8af5e673b380b8acabc35aee602
SSDEEP

3072:6mijJaqOludZNAN/x90YoVZcEWDlCGH2d5bcR9DAG:6JrO8NIoftalCGH2LiyG

Score

10^/10

smokeloader sel1 backdoor trojan

Malware Config

Extracted

Family

smokeloader

Botnet

sel1

Targets

- Target
  
  3028459a5fae8eb0d0d11c38386b5fdced16faa03b7130fa583078b8e5b0730c
- Size
  
  206KB
- MD5
  
  c805de268b14d8c76d9370c089bd6505
- SHA1
  
  f1f12ce4732f0e09f5ff8bff14aa6ecb045816b0
- SHA256
  
  3028459a5fae8eb0d0d11c38386b5fdced16faa03b7130fa583078b8e5b0730c
- SHA512
  
  03a02548f9233d4da99947348bf777c67da94c5cbd4bfa1654812e63b6462dd4229f17bdc1785a565760f5bc660510eab76ec8af5e673b380b8acabc35aee602
- SSDEEP
  
  3072:6mijJaqOludZNAN/x90YoVZcEWDlCGH2d5bcR9DAG:6JrO8NIoftalCGH2LiyG
Score

10^/10

smokeloader sel1 backdoor trojan
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

smokeloadersel1backdoortrojan

behavioral2

smokeloadersel1backdoortrojan