smokeloader | 1faf44a3f6260512ccf1c3af90b61ba58d2f47d332671958b5f67686b2166edd | Triage

Sharing

General

Target

1faf44a3f6260512ccf1c3af90b61ba58d2f47d332671958b5f67686b2166edd
Size

211KB
Sample

240707-v715gswbqp
MD5

61e75f7f4252b5c00173852f100972d7
SHA1

f1241496c8feb5d45d4df116dd42098d5bc2a9ac
SHA256

1faf44a3f6260512ccf1c3af90b61ba58d2f47d332671958b5f67686b2166edd
SHA512

5e69eb17d3db0ea9c362ffa72dffa2194e87adda17c2cd9f6630230fb283edb8f9dee2e43e272b57db1234322a2d93fbd64851fa181615c87671bcdfaa412f1e
SSDEEP

3072:lD4QRS0hhQx1feV0PyKdUSeZkAUDMqZ/New8iKc3A6:F4QRSsexlugmW39Z/AiZ

Score

10^/10

smokeloader pub2 backdoor trojan

Malware Config

Extracted

Family

smokeloader

Botnet

pub2

Targets

- Target
  
  1faf44a3f6260512ccf1c3af90b61ba58d2f47d332671958b5f67686b2166edd
- Size
  
  211KB
- MD5
  
  61e75f7f4252b5c00173852f100972d7
- SHA1
  
  f1241496c8feb5d45d4df116dd42098d5bc2a9ac
- SHA256
  
  1faf44a3f6260512ccf1c3af90b61ba58d2f47d332671958b5f67686b2166edd
- SHA512
  
  5e69eb17d3db0ea9c362ffa72dffa2194e87adda17c2cd9f6630230fb283edb8f9dee2e43e272b57db1234322a2d93fbd64851fa181615c87671bcdfaa412f1e
- SSDEEP
  
  3072:lD4QRS0hhQx1feV0PyKdUSeZkAUDMqZ/New8iKc3A6:F4QRSsexlugmW39Z/AiZ
Score

10^/10

smokeloader pub2 backdoor trojan
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

smokeloaderpub2backdoortrojan

behavioral2

smokeloaderpub2backdoortrojan