smokeloader | cd2a1e602cc0afef1563a59327341c7f824fea9a70a214363d147d5082ffb7ac | Triage

Sharing

General

Target

cd2a1e602cc0afef1563a59327341c7f824fea9a70a214363d147d5082ffb7ac
Size

228KB
Sample

240623-z1mqqsvhrj
MD5

1b1f643de4afab858e9027cf846d7e85
SHA1

8d38eac0db5ae8de62a16b75d5abf3149f61e974
SHA256

cd2a1e602cc0afef1563a59327341c7f824fea9a70a214363d147d5082ffb7ac
SHA512

58c2899419d70210e28097eb37a57d25c801a423a8588d317f35e7eb0b3e2540a14f546792899146049577d3e6d45a6ca32347d14912a2ddf8a7181974a9c176
SSDEEP

3072:vIx5XdI00LHvmHD8sYpfRC9Tb++Z8B+JH8Z6Xq3j8hdhyC8iXIK6RYK:vaXduHvmjmyZ80JH0ChyqIF

Score

10^/10

smokeloader pub1 backdoor trojan

Malware Config

Extracted

Family

smokeloader

Botnet

pub1

Targets

- Target
  
  cd2a1e602cc0afef1563a59327341c7f824fea9a70a214363d147d5082ffb7ac
- Size
  
  228KB
- MD5
  
  1b1f643de4afab858e9027cf846d7e85
- SHA1
  
  8d38eac0db5ae8de62a16b75d5abf3149f61e974
- SHA256
  
  cd2a1e602cc0afef1563a59327341c7f824fea9a70a214363d147d5082ffb7ac
- SHA512
  
  58c2899419d70210e28097eb37a57d25c801a423a8588d317f35e7eb0b3e2540a14f546792899146049577d3e6d45a6ca32347d14912a2ddf8a7181974a9c176
- SSDEEP
  
  3072:vIx5XdI00LHvmHD8sYpfRC9Tb++Z8B+JH8Z6Xq3j8hdhyC8iXIK6RYK:vaXduHvmjmyZ80JH0ChyqIF
Score

10^/10

smokeloader pub1 backdoor trojan
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

smokeloaderpub1backdoortrojan

behavioral2

smokeloaderpub1backdoortrojan