smokeloader | b2bc2b0411a1ff0ff97793bda704e8ae1232db8f56f17e8a93a2d919cc30aef3 | Triage

Sharing

General

Target

b2bc2b0411a1ff0ff97793bda704e8ae1232db8f56f17e8a93a2d919cc30aef3
Size

232KB
Sample

240728-c3e3catbrj
MD5

53c7c0a836ab869a22c91c7a140ba55c
SHA1

f82b18ea22e4df3fb0332f119ba2a228c519b1d3
SHA256

b2bc2b0411a1ff0ff97793bda704e8ae1232db8f56f17e8a93a2d919cc30aef3
SHA512

df15d9b2488f0c6187a77439279ebc0b67197b15c48b88d212408c35194fa15f8241d14b2d45a0a4cc62e906a80e192f2f238d3be1bd14f4df01026997704cbd
SSDEEP

3072:+B6ieC9oorerQEUj5N7e4uYa8NpXI1USva9FeOw56U/n:iDeCZre8EUj5NVbpXaezbU/

Score

10^/10

smokeloader pub2 backdoor discovery trojan

Malware Config

Extracted

Family

smokeloader

Botnet

pub2

Targets

- Target
  
  b2bc2b0411a1ff0ff97793bda704e8ae1232db8f56f17e8a93a2d919cc30aef3
- Size
  
  232KB
- MD5
  
  53c7c0a836ab869a22c91c7a140ba55c
- SHA1
  
  f82b18ea22e4df3fb0332f119ba2a228c519b1d3
- SHA256
  
  b2bc2b0411a1ff0ff97793bda704e8ae1232db8f56f17e8a93a2d919cc30aef3
- SHA512
  
  df15d9b2488f0c6187a77439279ebc0b67197b15c48b88d212408c35194fa15f8241d14b2d45a0a4cc62e906a80e192f2f238d3be1bd14f4df01026997704cbd
- SSDEEP
  
  3072:+B6ieC9oorerQEUj5N7e4uYa8NpXI1USva9FeOw56U/n:iDeCZre8EUj5NVbpXaezbU/
Score

10^/10

smokeloader pub2 backdoor discovery trojan
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

smokeloaderpub2backdoordiscoverytrojan

behavioral2

smokeloaderpub2backdoordiscoverytrojan