smokeloader | 55e120c60a32d7a83a356c5e5d0f68dd607a6f8a94428e82392706c5afe1a778 | Triage

Sharing

General

Target

55e120c60a32d7a83a356c5e5d0f68dd607a6f8a94428e82392706c5afe1a778
Size

138KB
Sample

241104-tcqjtsshnq
MD5

9791fad69aac2b6ec059b95c8df68afe
SHA1

61c42f64754bbcce9fec84c5622a78944bb7867f
SHA256

55e120c60a32d7a83a356c5e5d0f68dd607a6f8a94428e82392706c5afe1a778
SHA512

ab3e1582f256d4ea1874c9d5314c0fad8bc7c4ebbc42176b72cf959b37d3abcfac044f2b4b2bea86580f674a3b490dca80a43866cb88b26664a12953d000ba10
SSDEEP

3072:Yvf43tEHhqPkZMw93K9IsACgyL8wTHBcMJi+kSA3Vaf:Yvf43tw8kZMfIZCgQ8k9liK

Score

10^/10

smokeloader 2023 backdoor discovery trojan

Malware Config

Extracted

Family

smokeloader

Botnet

2023

Targets

- Target
  
  8a29e1c6c28c4124ac50b1dd1424ad8e7316eff59cb4b9a6dcafb9556aee4d64
- Size
  
  216KB
- MD5
  
  fb7d814cdf9ff8996c0137037063a492
- SHA1
  
  26cb20e585f39ce0f48426dbabe4fb2f9056c6db
- SHA256
  
  8a29e1c6c28c4124ac50b1dd1424ad8e7316eff59cb4b9a6dcafb9556aee4d64
- SHA512
  
  2ae85f076053d65aa56e2150b3b3bbb386c0f3d8956ec5ba0bfba6550640a0c416fad3ccad3e0ad150fd0b708617e28d872cb644a0502edd731199a3b28a57e2
- SSDEEP
  
  3072:vXcb/MeLQu3Mh07St57T5A5/Fr+8wTHBRTXId/1fW6:fIZL37SbTGXS8kLQr
Score

10^/10

smokeloader 2023 backdoor discovery trojan
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
- Smokeloader family
  smokeloader
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

smokeloader2023backdoordiscoverytrojan

behavioral2

smokeloader2023backdoordiscoverytrojan