smokeloader | 234c22b2e9adf8a2843c44d570911ed3efd6a48a771f91b8e7d7b656dd6fcd9e | Triage

Sharing

General

Target

234c22b2e9adf8a2843c44d570911ed3efd6a48a771f91b8e7d7b656dd6fcd9e
Size

234KB
Sample

240526-k2byasdh89
MD5

e00e7552dab6ff98e762dca7805b54ea
SHA1

c2434ccea79b7ba32d6ba873f6d12d8949f464ae
SHA256

234c22b2e9adf8a2843c44d570911ed3efd6a48a771f91b8e7d7b656dd6fcd9e
SHA512

74e677c91c62883770fdc10231c2df5cabd7f6788c7615435f0f66b62469a7323e629f5dbff0d2f1df13319b8cb8be3e819908d0859050223c347fd67df5098b
SSDEEP

3072:457yX1gyQDBKPELi+crEMpL2Tl/BwLXbK2dRADclYzqTPT8:oyQDQcLinraolYzQT

Score

10^/10

smokeloader pub4 backdoor trojan

Malware Config

Extracted

Family

smokeloader

Botnet

pub4

Targets

- Target
  
  234c22b2e9adf8a2843c44d570911ed3efd6a48a771f91b8e7d7b656dd6fcd9e
- Size
  
  234KB
- MD5
  
  e00e7552dab6ff98e762dca7805b54ea
- SHA1
  
  c2434ccea79b7ba32d6ba873f6d12d8949f464ae
- SHA256
  
  234c22b2e9adf8a2843c44d570911ed3efd6a48a771f91b8e7d7b656dd6fcd9e
- SHA512
  
  74e677c91c62883770fdc10231c2df5cabd7f6788c7615435f0f66b62469a7323e629f5dbff0d2f1df13319b8cb8be3e819908d0859050223c347fd67df5098b
- SSDEEP
  
  3072:457yX1gyQDBKPELi+crEMpL2Tl/BwLXbK2dRADclYzqTPT8:oyQDQcLinraolYzQT
Score

10^/10

smokeloader pub4 backdoor trojan
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

smokeloaderpub4backdoortrojan

behavioral2

smokeloaderpub4backdoortrojan