smokeloader | 77b752b9eb5d57b9af1b964603f16936ee8bd4ae516fbc14946cb7003a937a4c | Triage

Sharing

General

Target

2500-18-0x0000000000400000-0x0000000000409000-memory.dmp
Size

36KB
Sample

240725-b1spzszglm
MD5

442741f172384b057aafc9bc2a2e5e9a
SHA1

fae6691adbb5f7980f89bbff7246e928ecac8972
SHA256

77b752b9eb5d57b9af1b964603f16936ee8bd4ae516fbc14946cb7003a937a4c
SHA512

2613a6336afb46c016c55e8fff9b74a64f7739844dc7c5206f8c8f5901fc7c74a645388ff429510ba2006a674d3b560647278db0fbf595aac1ae2b2dd18e97ae
SSDEEP

768:QA659fftTDIQg2GTbRZ22DpQg3RT/Z68eckbrO:Qh9fftIYE2eQKbNehba

Score

10^/10

smokeloader pub1 backdoor discovery trojan

Malware Config

Extracted

Family

smokeloader

Botnet

pub1

Targets

- Target
  
  2500-18-0x0000000000400000-0x0000000000409000-memory.dmp
- Size
  
  36KB
- MD5
  
  442741f172384b057aafc9bc2a2e5e9a
- SHA1
  
  fae6691adbb5f7980f89bbff7246e928ecac8972
- SHA256
  
  77b752b9eb5d57b9af1b964603f16936ee8bd4ae516fbc14946cb7003a937a4c
- SHA512
  
  2613a6336afb46c016c55e8fff9b74a64f7739844dc7c5206f8c8f5901fc7c74a645388ff429510ba2006a674d3b560647278db0fbf595aac1ae2b2dd18e97ae
- SSDEEP
  
  768:QA659fftTDIQg2GTbRZ22DpQg3RT/Z68eckbrO:Qh9fftIYE2eQKbNehba
Score

10^/10

smokeloader backdoor discovery trojan
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

pub1smokeloader

behavioral1

smokeloaderbackdoordiscoverytrojan

behavioral2

smokeloaderbackdoordiscoverytrojan