smokeloader | b5eae607c2cd5050d24e34d1f13f18a8266648063be7b1ac598d8533319bb6d2 | Triage

Sharing

General

Target

b5eae607c2cd5050d24e34d1f13f18a8266648063be7b1ac598d8533319bb6d2
Size

312KB
Sample

240624-tdetqazhjf
MD5

adac0a9f5ec62e2ef4367cd4dc2c3c74
SHA1

4bde4a66df52b07fc2b4081bf6a6aa8577af0011
SHA256

b5eae607c2cd5050d24e34d1f13f18a8266648063be7b1ac598d8533319bb6d2
SHA512

6dd5c1375551d7ca808881eb1a51f14610e878ead986d6e8a4b706850f9c6afc367e1ee84d1d613680cddba1188689c923bbc2961b479c17e4f34321395c60f7
SSDEEP

3072:+MbGdNbL/skxgXO19wp4zP9J9hzCdTs8Xt1ZtdRWBcr5LUBBhchV0P:+6GdZLEkxGMTP95z0Ts8Xt1jWBYUBno

Score

10^/10

smokeloader pub1 backdoor trojan

Malware Config

Extracted

Family

smokeloader

Botnet

pub1

Targets

- Target
  
  b5eae607c2cd5050d24e34d1f13f18a8266648063be7b1ac598d8533319bb6d2
- Size
  
  312KB
- MD5
  
  adac0a9f5ec62e2ef4367cd4dc2c3c74
- SHA1
  
  4bde4a66df52b07fc2b4081bf6a6aa8577af0011
- SHA256
  
  b5eae607c2cd5050d24e34d1f13f18a8266648063be7b1ac598d8533319bb6d2
- SHA512
  
  6dd5c1375551d7ca808881eb1a51f14610e878ead986d6e8a4b706850f9c6afc367e1ee84d1d613680cddba1188689c923bbc2961b479c17e4f34321395c60f7
- SSDEEP
  
  3072:+MbGdNbL/skxgXO19wp4zP9J9hzCdTs8Xt1ZtdRWBcr5LUBBhchV0P:+6GdZLEkxGMTP95z0Ts8Xt1jWBYUBno
Score

10^/10

smokeloader pub1 backdoor trojan
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

smokeloaderpub1backdoortrojan

behavioral2

smokeloaderpub1backdoortrojan