smokeloader | 46de520f396e2c4f27c77f7398d2c6acedb525a687b76aa16a879a01474a68bc | Triage

Sharing

General

Target

46de520f396e2c4f27c77f7398d2c6acedb525a687b76aa16a879a01474a68bc
Size

180KB
Sample

240521-pb5j5sdc2y
MD5

904a4f1b4e35091000cac5330bc4a807
SHA1

78800bdbf10b1d894d650e44ec759abf5d531b79
SHA256

46de520f396e2c4f27c77f7398d2c6acedb525a687b76aa16a879a01474a68bc
SHA512

ccac160d1954de79d6a9d2115f465564cb9ca41155c5dab2fe8968ed8422f825f8e2123cb1e505cb489cfe209ba00a0cd76fcb4a2a4734c7151d98838d2f0f23
SSDEEP

1536:O2E3q67wgr1jNoBP15nSRIKwvVvS/YwH7RoSf83qKEJSWG9bOAsaTfErptqjH5DF:0nVe5sww/YwbSqKEI7QAsoqp4H5gk

Score

10^/10

smokeloader pub1 backdoor trojan

Malware Config

Extracted

Family

smokeloader

Botnet

pub1

Targets

- Target
  
  46de520f396e2c4f27c77f7398d2c6acedb525a687b76aa16a879a01474a68bc
- Size
  
  180KB
- MD5
  
  904a4f1b4e35091000cac5330bc4a807
- SHA1
  
  78800bdbf10b1d894d650e44ec759abf5d531b79
- SHA256
  
  46de520f396e2c4f27c77f7398d2c6acedb525a687b76aa16a879a01474a68bc
- SHA512
  
  ccac160d1954de79d6a9d2115f465564cb9ca41155c5dab2fe8968ed8422f825f8e2123cb1e505cb489cfe209ba00a0cd76fcb4a2a4734c7151d98838d2f0f23
- SSDEEP
  
  1536:O2E3q67wgr1jNoBP15nSRIKwvVvS/YwH7RoSf83qKEJSWG9bOAsaTfErptqjH5DF:0nVe5sww/YwbSqKEI7QAsoqp4H5gk
Score

10^/10

smokeloader pub1 backdoor trojan
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

smokeloaderpub1backdoortrojan

behavioral2

smokeloaderpub1backdoortrojan