smokeloader | 7a13f3712f5f73dbbc7a345d9319ed3ff83cea0fc4f552becba3de0e86c80ebb | Triage

Sharing

General

Target

7a13f3712f5f73dbbc7a345d9319ed3ff83cea0fc4f552becba3de0e86c80ebb.exe
Size

212KB
Sample

240522-w38t7sbh81
MD5

cb7a77e309992eec03cafdab52ecb519
SHA1

d0c59ad03489ba97846b5cbe693649ffd5785c65
SHA256

7a13f3712f5f73dbbc7a345d9319ed3ff83cea0fc4f552becba3de0e86c80ebb
SHA512

4509a5e74815bfb463c5aaf629b3a60a6c709e110ba8e876ba1b65a0b3ffd77fd171d8d317124618cb7831042db37a50741a02665fe3b1918ba5ad5252393e54
SSDEEP

3072:dsyabhcSK3jl1hOpSk+9FkhyfFU8NqxLYude33NLb0l3JfAHJe:/acBvOIksZfFXDEe33al5YH

Score

10^/10

smokeloader sel2 backdoor trojan

Malware Config

Extracted

Family

smokeloader

Botnet

sel2

Targets

- Target
  
  7a13f3712f5f73dbbc7a345d9319ed3ff83cea0fc4f552becba3de0e86c80ebb.exe
- Size
  
  212KB
- MD5
  
  cb7a77e309992eec03cafdab52ecb519
- SHA1
  
  d0c59ad03489ba97846b5cbe693649ffd5785c65
- SHA256
  
  7a13f3712f5f73dbbc7a345d9319ed3ff83cea0fc4f552becba3de0e86c80ebb
- SHA512
  
  4509a5e74815bfb463c5aaf629b3a60a6c709e110ba8e876ba1b65a0b3ffd77fd171d8d317124618cb7831042db37a50741a02665fe3b1918ba5ad5252393e54
- SSDEEP
  
  3072:dsyabhcSK3jl1hOpSk+9FkhyfFU8NqxLYude33NLb0l3JfAHJe:/acBvOIksZfFXDEe33al5YH
Score

10^/10

smokeloader sel2 backdoor trojan
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

smokeloadersel2backdoortrojan

behavioral2

smokeloadersel2backdoortrojan