smokeloader | 90808db2bff7e47b7341ee272f60fb98c1f31ae4a631c60bf70668db17022353 | Triage

Sharing

General

Target

90808db2bff7e47b7341ee272f60fb98c1f31ae4a631c60bf70668db17022353
Size

334KB
Sample

241104-3tk54szejg
MD5

0af50bdfc4a6ffc9d7ec529c1f287bc6
SHA1

33a9602b7572d8a841d4d6446e63726811457992
SHA256

90808db2bff7e47b7341ee272f60fb98c1f31ae4a631c60bf70668db17022353
SHA512

14be414cdd0f08f2493d61f61fa035715b8a42fc722bd1b82d9db8dbf6fea7c1702a8f725440b35ed11ecbbc2cc4a0882f40a38bb03e79ba90eeb3ca3008d7a4
SSDEEP

6144:Iw/LqJcTHEKkTFLOPJv4t1+jAWTM4xVvkHb+ewB:h/EcTkKqFLO2WXTMENi+7

Score

10^/10

smokeloader 2023 backdoor discovery trojan

Malware Config

Extracted

Family

smokeloader

Botnet

2023

Targets

- Target
  
  90808db2bff7e47b7341ee272f60fb98c1f31ae4a631c60bf70668db17022353
- Size
  
  334KB
- MD5
  
  0af50bdfc4a6ffc9d7ec529c1f287bc6
- SHA1
  
  33a9602b7572d8a841d4d6446e63726811457992
- SHA256
  
  90808db2bff7e47b7341ee272f60fb98c1f31ae4a631c60bf70668db17022353
- SHA512
  
  14be414cdd0f08f2493d61f61fa035715b8a42fc722bd1b82d9db8dbf6fea7c1702a8f725440b35ed11ecbbc2cc4a0882f40a38bb03e79ba90eeb3ca3008d7a4
- SSDEEP
  
  6144:Iw/LqJcTHEKkTFLOPJv4t1+jAWTM4xVvkHb+ewB:h/EcTkKqFLO2WXTMENi+7
Score

10^/10

smokeloader 2023 backdoor trojan discovery
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
- Smokeloader family
  smokeloader
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

smokeloader2023backdoortrojan

behavioral2

smokeloader2023backdoordiscoverytrojan