smokeloader | abf0f1fc0d524706ed887ddf77ea2b6c59a19dd850dbad12f5f40e4975626a3c | Triage

Sharing

General

Target

1244-0-0x0000000000400000-0x000000000040B000-memory.dmp
Size

44KB
Sample

241102-vyvlca1clr
MD5

8f11bbeac723e92defb879f5364827cd
SHA1

98f2fcb82d93c3d844a18368f5040030ea8fd262
SHA256

abf0f1fc0d524706ed887ddf77ea2b6c59a19dd850dbad12f5f40e4975626a3c
SHA512

c3a9a6f7b81827870ee181ed74795216a0be8df05ecbd63f9709f1b3e8f92ad3f4587156f4cca8711103fd3a2f16ece314e82df2a2af8f2181360b3db6fa2496
SSDEEP

768:CazBIa4ueiy5prFFvY9NSiNUzhHzp587z78Lj946ZYlueKZN:tguWrmSiN2lz/e7kcueKZN

Score

10^/10

smokeloader backdoor discovery trojan

Malware Config

Targets

- Target
  
  1244-0-0x0000000000400000-0x000000000040B000-memory.dmp
- Size
  
  44KB
- MD5
  
  8f11bbeac723e92defb879f5364827cd
- SHA1
  
  98f2fcb82d93c3d844a18368f5040030ea8fd262
- SHA256
  
  abf0f1fc0d524706ed887ddf77ea2b6c59a19dd850dbad12f5f40e4975626a3c
- SHA512
  
  c3a9a6f7b81827870ee181ed74795216a0be8df05ecbd63f9709f1b3e8f92ad3f4587156f4cca8711103fd3a2f16ece314e82df2a2af8f2181360b3db6fa2496
- SSDEEP
  
  768:CazBIa4ueiy5prFFvY9NSiNUzhHzp587z78Lj946ZYlueKZN:tguWrmSiN2lz/e7kcueKZN
Score

10^/10

smokeloader backdoor discovery trojan
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
- Smokeloader family
  smokeloader
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

smokeloaderbackdoordiscoverytrojan

behavioral2

smokeloaderbackdoordiscoverytrojan