smokeloader | 9c539da17e3c5b2c2c289137ec9276c08b59de9e8a812c6f2e2f773721873809 | Triage

Sharing

General

Target

9c539da17e3c5b2c2c289137ec9276c08b59de9e8a812c6f2e2f773721873809
Size

262KB
Sample

240529-xwgyksfd94
MD5

c24647e648a989ff4198523822acbfb5
SHA1

b5597395acb73961c6400c98bdd24c0b6c6c21e1
SHA256

9c539da17e3c5b2c2c289137ec9276c08b59de9e8a812c6f2e2f773721873809
SHA512

02a98048271b74f51878846d8ee6861130cb047bc0c48e9a34c24b06855ce198059060f9ed9c1ac5f63a35c63fddf411f51980f159da272d955beb8fd179ca63
SSDEEP

1536:mqyZYzTaqe4FmUvQ8wz3413dFolJwy7a2pIky6pDGLf5W1cloDXnWo1pn9Zp8QlM:VyBXrzIROvFpM2DGT5WpWGNumh

Score

10^/10

smokeloader pub1 backdoor trojan

Malware Config

Extracted

Family

smokeloader

Botnet

pub1

Targets

- Target
  
  9c539da17e3c5b2c2c289137ec9276c08b59de9e8a812c6f2e2f773721873809
- Size
  
  262KB
- MD5
  
  c24647e648a989ff4198523822acbfb5
- SHA1
  
  b5597395acb73961c6400c98bdd24c0b6c6c21e1
- SHA256
  
  9c539da17e3c5b2c2c289137ec9276c08b59de9e8a812c6f2e2f773721873809
- SHA512
  
  02a98048271b74f51878846d8ee6861130cb047bc0c48e9a34c24b06855ce198059060f9ed9c1ac5f63a35c63fddf411f51980f159da272d955beb8fd179ca63
- SSDEEP
  
  1536:mqyZYzTaqe4FmUvQ8wz3413dFolJwy7a2pIky6pDGLf5W1cloDXnWo1pn9Zp8QlM:VyBXrzIROvFpM2DGT5WpWGNumh
Score

10^/10

smokeloader pub1 backdoor trojan
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

smokeloaderpub1backdoortrojan

behavioral2

smokeloaderpub1backdoortrojan