smokeloader | 67d4c9455cadeac7b9fdcae89deb448f7f4226f2894f183b783e82ca842b190d | Triage

Sharing

General

Target

67d4c9455cadeac7b9fdcae89deb448f7f4226f2894f183b783e82ca842b190d
Size

151KB
Sample

240724-v3t6dasajc
MD5

4ab2a8b0fb9b2b406831a709355c440a
SHA1

224d3d1016e24672c41787fbae3d9badbbff9822
SHA256

67d4c9455cadeac7b9fdcae89deb448f7f4226f2894f183b783e82ca842b190d
SHA512

32a03c3c7ddcc56da73833cb4dd0773e171a718d2f234953af6d4cf51b6a33ea1f8bb1bd3aaac27dad2c40adaa172636f49dca11e43a82ec103a3c8d29ffa3ef
SSDEEP

3072:Va8LAVOcLPN2jrPo1qicSF22kBzo2T5Jga+LhB5/:VTLAAcL8XP6qicSF22kBZcVj

Score

10^/10

smokeloader pub1 backdoor discovery trojan

Malware Config

Extracted

Family

smokeloader

Botnet

pub1

Targets

- Target
  
  67d4c9455cadeac7b9fdcae89deb448f7f4226f2894f183b783e82ca842b190d
- Size
  
  151KB
- MD5
  
  4ab2a8b0fb9b2b406831a709355c440a
- SHA1
  
  224d3d1016e24672c41787fbae3d9badbbff9822
- SHA256
  
  67d4c9455cadeac7b9fdcae89deb448f7f4226f2894f183b783e82ca842b190d
- SHA512
  
  32a03c3c7ddcc56da73833cb4dd0773e171a718d2f234953af6d4cf51b6a33ea1f8bb1bd3aaac27dad2c40adaa172636f49dca11e43a82ec103a3c8d29ffa3ef
- SSDEEP
  
  3072:Va8LAVOcLPN2jrPo1qicSF22kBzo2T5Jga+LhB5/:VTLAAcL8XP6qicSF22kBZcVj
Score

10^/10

smokeloader pub1 backdoor discovery trojan
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

smokeloaderpub1backdoordiscoverytrojan

behavioral2

smokeloaderpub1backdoordiscoverytrojan