smokeloader | 07440021c21067958af8808c382520d359ba8dd23a39a02892aa1e1cd0fdef1a | Triage

Sharing

General

Target

07440021c21067958af8808c382520d359ba8dd23a39a02892aa1e1cd0fdef1a
Size

316KB
Sample

240528-p8ckmaed2x
MD5

90639f893099ececc76450b1f65abd11
SHA1

5ae29b4bfdffa6982fd1a70461a46868cc108845
SHA256

07440021c21067958af8808c382520d359ba8dd23a39a02892aa1e1cd0fdef1a
SHA512

00c83a9bbbe792068f1ae1a9e48da263f492b031d1e73bd73c4d137fbc4497bdcfd562d08f02e31f3e6439840f62d4bab1723976f82c34b37f80bd0f939abc9b
SSDEEP

6144:bDvo6p6eCOq3HKKgBC5gm9XwVNU1LGZTb+el:bDvo6p6Eq3HKKgagH/UgZx

Score

10^/10

smokeloader pub1 backdoor trojan

Malware Config

Extracted

Family

smokeloader

Botnet

pub1

Targets

- Target
  
  07440021c21067958af8808c382520d359ba8dd23a39a02892aa1e1cd0fdef1a
- Size
  
  316KB
- MD5
  
  90639f893099ececc76450b1f65abd11
- SHA1
  
  5ae29b4bfdffa6982fd1a70461a46868cc108845
- SHA256
  
  07440021c21067958af8808c382520d359ba8dd23a39a02892aa1e1cd0fdef1a
- SHA512
  
  00c83a9bbbe792068f1ae1a9e48da263f492b031d1e73bd73c4d137fbc4497bdcfd562d08f02e31f3e6439840f62d4bab1723976f82c34b37f80bd0f939abc9b
- SSDEEP
  
  6144:bDvo6p6eCOq3HKKgBC5gm9XwVNU1LGZTb+el:bDvo6p6Eq3HKKgagH/UgZx
Score

10^/10

smokeloader pub1 backdoor trojan
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

smokeloaderpub1backdoortrojan

behavioral2

smokeloaderpub1backdoortrojan