smokeloader | 6d8382e51bc88638edf18b3b5f302800148721b7cfadca25a3c8e30800a2bc62 | Triage

Sharing

General

Target

6d8382e51bc88638edf18b3b5f302800148721b7cfadca25a3c8e30800a2bc62
Size

229KB
Sample

240727-twddls1cre
MD5

2cac41a17d252f418cb304ccd6210ec5
SHA1

9e0a5f7f03dbdabc4ef9cd5c3092c053c86cd65b
SHA256

6d8382e51bc88638edf18b3b5f302800148721b7cfadca25a3c8e30800a2bc62
SHA512

316dac2885c5aef33f1a2c910e141379bb7469f554b8cbf7a8768d7a1961667067aaea638aa5b1e5f4cb7821ef9e457cd1eb23baa378039e1c1ddb0838cae4da
SSDEEP

3072:3+1GFaPoknEO3QVHdseJQ0PiUCGpO3J9q4bVh2Y+UN1hPHLFEUh3FM5S4oqD:usFaQVO3ifv2GpOS4ZMYphfLdFMY

Score

10^/10

smokeloader pub1 backdoor discovery trojan

Malware Config

Extracted

Family

smokeloader

Botnet

pub1

Targets

- Target
  
  6d8382e51bc88638edf18b3b5f302800148721b7cfadca25a3c8e30800a2bc62
- Size
  
  229KB
- MD5
  
  2cac41a17d252f418cb304ccd6210ec5
- SHA1
  
  9e0a5f7f03dbdabc4ef9cd5c3092c053c86cd65b
- SHA256
  
  6d8382e51bc88638edf18b3b5f302800148721b7cfadca25a3c8e30800a2bc62
- SHA512
  
  316dac2885c5aef33f1a2c910e141379bb7469f554b8cbf7a8768d7a1961667067aaea638aa5b1e5f4cb7821ef9e457cd1eb23baa378039e1c1ddb0838cae4da
- SSDEEP
  
  3072:3+1GFaPoknEO3QVHdseJQ0PiUCGpO3J9q4bVh2Y+UN1hPHLFEUh3FM5S4oqD:usFaQVO3ifv2GpOS4ZMYphfLdFMY
Score

10^/10

smokeloader pub1 backdoor discovery trojan
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

smokeloaderpub1backdoordiscoverytrojan

behavioral2

smokeloaderpub1backdoordiscoverytrojan