smokeloader | fef52755a92b494d3e815519d0c50836b42d81a4d573a7bda3d17b331c6d836e | Triage

Sharing

General

Target

1900-0-0x0000000000400000-0x000000000040B000-memory.dmp
Size

44KB
Sample

240925-j2k1jaxdmh
MD5

4c2f56307c94967b8d64323a5ee3d6e0
SHA1

7a3fcd2b901e211bb592c67819054765b397b312
SHA256

fef52755a92b494d3e815519d0c50836b42d81a4d573a7bda3d17b331c6d836e
SHA512

1d1f423b8d4cd049414535ddc7a0e6783bde2a03fae8f8ed0178852ffc1bad584be3130bb67a685156d2303f304cacd87cc65ecc7703dc15ec9d961cf03b27cd
SSDEEP

768:CNRArRrmnz5y+bgsDF5I0haNLj1PokgJ4T:CNRAdanzVF20MBj1PgJ4T

Score

10^/10

smokeloader backdoor discovery trojan

Malware Config

Targets

- Target
  
  1900-0-0x0000000000400000-0x000000000040B000-memory.dmp
- Size
  
  44KB
- MD5
  
  4c2f56307c94967b8d64323a5ee3d6e0
- SHA1
  
  7a3fcd2b901e211bb592c67819054765b397b312
- SHA256
  
  fef52755a92b494d3e815519d0c50836b42d81a4d573a7bda3d17b331c6d836e
- SHA512
  
  1d1f423b8d4cd049414535ddc7a0e6783bde2a03fae8f8ed0178852ffc1bad584be3130bb67a685156d2303f304cacd87cc65ecc7703dc15ec9d961cf03b27cd
- SSDEEP
  
  768:CNRArRrmnz5y+bgsDF5I0haNLj1PokgJ4T:CNRAdanzVF20MBj1PgJ4T
Score

10^/10

smokeloader backdoor discovery trojan
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

smokeloaderbackdoordiscoverytrojan

behavioral2

smokeloaderbackdoordiscoverytrojan