smokeloader | 202d7437f373c1ee4da3733e9445a521d9395c604ad8ec5e25cd4799d60ac754 | Triage

Sharing

General

Target

202d7437f373c1ee4da3733e9445a521d9395c604ad8ec5e25cd4799d60ac754
Size

186KB
Sample

241104-xz1j4ayjen
MD5

f46f9009978c8a89c1dc71c76e2e8a5f
SHA1

1fcdb6d314c2d3609bae1faf8cd31197b7ce28ec
SHA256

202d7437f373c1ee4da3733e9445a521d9395c604ad8ec5e25cd4799d60ac754
SHA512

ac830a5626e609c19fcc65cdc58e9448a0118f1b3096281308f74425aa8efc720a8fc69d1e954ee55e3ec3a69d39e288d25b5625810b6fee02db34922ec2fa42
SSDEEP

3072:VvpokLTeW8qG5txEn8j4g5yaiIyrUkbHJUODvq13ZhAJBA1e:BLTqqqC8j4FPlrUkbMrKBA1e

Score

10^/10

smokeloader 2023 backdoor discovery trojan

Malware Config

Extracted

Family

smokeloader

Botnet

2023

Targets

- Target
  
  202d7437f373c1ee4da3733e9445a521d9395c604ad8ec5e25cd4799d60ac754
- Size
  
  186KB
- MD5
  
  f46f9009978c8a89c1dc71c76e2e8a5f
- SHA1
  
  1fcdb6d314c2d3609bae1faf8cd31197b7ce28ec
- SHA256
  
  202d7437f373c1ee4da3733e9445a521d9395c604ad8ec5e25cd4799d60ac754
- SHA512
  
  ac830a5626e609c19fcc65cdc58e9448a0118f1b3096281308f74425aa8efc720a8fc69d1e954ee55e3ec3a69d39e288d25b5625810b6fee02db34922ec2fa42
- SSDEEP
  
  3072:VvpokLTeW8qG5txEn8j4g5yaiIyrUkbHJUODvq13ZhAJBA1e:BLTqqqC8j4FPlrUkbMrKBA1e
Score

10^/10

smokeloader 2023 backdoor trojan discovery
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
- Smokeloader family
  smokeloader
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

smokeloader2023backdoortrojan

behavioral2

smokeloader2023backdoordiscoverytrojan