smokeloader | 82110da1bd2bfefeaffdfb3631f99b182ae22429e5536ce4c63f053404f6c55a | Triage

Sharing

General

Target

82110da1bd2bfefeaffdfb3631f99b182ae22429e5536ce4c63f053404f6c55a
Size

234KB
Sample

240526-k48eaaea77
MD5

e468f15296ea24b2184e72d282fdd1a2
SHA1

87f32135b1810506b6f49b56b50f65c8dd05dab4
SHA256

82110da1bd2bfefeaffdfb3631f99b182ae22429e5536ce4c63f053404f6c55a
SHA512

42fa55b2f7ed8136a997dc1b3429cee20f480f9138536330b571c7de40b5106dc14d0634330caad6a0a7d411cfc4a7bac578a52de1b53c543ac012661553793f
SSDEEP

3072:05N6IgsgVSayTvq0i+TrEMxqrbum6k7ZGinyZaIPAU+RcTYzhEKT8:S0VSVC0i3rim6k7Z5yZauV6qYzh3T

Score

10^/10

smokeloader pub2 backdoor trojan

Malware Config

Extracted

Family

smokeloader

Botnet

pub2

Targets

- Target
  
  82110da1bd2bfefeaffdfb3631f99b182ae22429e5536ce4c63f053404f6c55a
- Size
  
  234KB
- MD5
  
  e468f15296ea24b2184e72d282fdd1a2
- SHA1
  
  87f32135b1810506b6f49b56b50f65c8dd05dab4
- SHA256
  
  82110da1bd2bfefeaffdfb3631f99b182ae22429e5536ce4c63f053404f6c55a
- SHA512
  
  42fa55b2f7ed8136a997dc1b3429cee20f480f9138536330b571c7de40b5106dc14d0634330caad6a0a7d411cfc4a7bac578a52de1b53c543ac012661553793f
- SSDEEP
  
  3072:05N6IgsgVSayTvq0i+TrEMxqrbum6k7ZGinyZaIPAU+RcTYzhEKT8:S0VSVC0i3rim6k7Z5yZauV6qYzh3T
Score

10^/10

smokeloader pub2 backdoor trojan
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

smokeloaderpub2backdoortrojan

behavioral2

smokeloaderpub2backdoortrojan