smokeloader | 7504e1fbf3e9d28d7bd7264a6f61bc6cf13005383923a135da5e68a4a445ee35 | Triage

Sharing

General

Target

7504e1fbf3e9d28d7bd7264a6f61bc6cf13005383923a135da5e68a4a445ee35
Size

286KB
Sample

240527-bfm9rsaf9w
MD5

1b82013e68fa41787f2833707fde7dca
SHA1

77d3eaa40c671363d425fe4e0174968b8992b8e1
SHA256

7504e1fbf3e9d28d7bd7264a6f61bc6cf13005383923a135da5e68a4a445ee35
SHA512

90843ef15fa53e17eda5d460395382acb8a7f72eaf1fa0ded1ac332d43b97046f3cf56986a3cab26ede589dfd1041ec8b18162dfcddb2183c2553d92006b0e94
SSDEEP

3072:h5IxgqqMnDYEeE+msOPctCR3tn/EpB5HN83pLhIao1gRgkzdxLb6ik6l538JL:0xgVqDYuzN/oBLMlh3J7LDl5M

Score

10^/10

smokeloader pub3 backdoor trojan

Malware Config

Extracted

Family

smokeloader

Botnet

pub3

Targets

- Target
  
  7504e1fbf3e9d28d7bd7264a6f61bc6cf13005383923a135da5e68a4a445ee35
- Size
  
  286KB
- MD5
  
  1b82013e68fa41787f2833707fde7dca
- SHA1
  
  77d3eaa40c671363d425fe4e0174968b8992b8e1
- SHA256
  
  7504e1fbf3e9d28d7bd7264a6f61bc6cf13005383923a135da5e68a4a445ee35
- SHA512
  
  90843ef15fa53e17eda5d460395382acb8a7f72eaf1fa0ded1ac332d43b97046f3cf56986a3cab26ede589dfd1041ec8b18162dfcddb2183c2553d92006b0e94
- SSDEEP
  
  3072:h5IxgqqMnDYEeE+msOPctCR3tn/EpB5HN83pLhIao1gRgkzdxLb6ik6l538JL:0xgVqDYuzN/oBLMlh3J7LDl5M
Score

10^/10

smokeloader pub3 backdoor trojan
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

smokeloaderpub3backdoortrojan

behavioral2

smokeloaderpub3backdoortrojan