smokeloader | e3802d7d7902cfafe14ed996e4e3496d20904cf1d20197b416ff856e97463874 | Triage

Sharing

General

Target

e3802d7d7902cfafe14ed996e4e3496d20904cf1d20197b416ff856e97463874
Size

178KB
Sample

241105-nfjmsszjex
MD5

aa0ca41353719bd4ebda52e09c2f9687
SHA1

a3ab2faaf47d31ba52eeea318ab332fedc10a3c9
SHA256

e3802d7d7902cfafe14ed996e4e3496d20904cf1d20197b416ff856e97463874
SHA512

45258810926cc432f3e5ed0f3c4b2f703d2e199be958e35bcfde175b8825d2abeb433789212a6355effc37ed2a33149d918314a9b62c1132b39958fd3af46144
SSDEEP

3072:WtaQXMYrEDcwid5B9PTQxmTsdmYGifXCZpUS69:yDEDcwk5TJTI/fSra

Score

10^/10

smokeloader 2023 backdoor discovery trojan

Malware Config

Extracted

Family

smokeloader

Botnet

2023

Targets

- Target
  
  e3802d7d7902cfafe14ed996e4e3496d20904cf1d20197b416ff856e97463874
- Size
  
  178KB
- MD5
  
  aa0ca41353719bd4ebda52e09c2f9687
- SHA1
  
  a3ab2faaf47d31ba52eeea318ab332fedc10a3c9
- SHA256
  
  e3802d7d7902cfafe14ed996e4e3496d20904cf1d20197b416ff856e97463874
- SHA512
  
  45258810926cc432f3e5ed0f3c4b2f703d2e199be958e35bcfde175b8825d2abeb433789212a6355effc37ed2a33149d918314a9b62c1132b39958fd3af46144
- SSDEEP
  
  3072:WtaQXMYrEDcwid5B9PTQxmTsdmYGifXCZpUS69:yDEDcwk5TJTI/fSra
Score

10^/10

smokeloader 2023 backdoor discovery trojan
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
- Smokeloader family
  smokeloader
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

smokeloader2023backdoordiscoverytrojan

behavioral2

smokeloader2023backdoordiscoverytrojan