smokeloader | e3556df958c0f5b47516ad79b2dd29ded46c1583c0ffe691f2f3d84cc0b5dc1b | Triage

Sharing

General

Target

e3556df958c0f5b47516ad79b2dd29ded46c1583c0ffe691f2f3d84cc0b5dc1b
Size

330KB
Sample

241105-srq88swman
MD5

ea7781cd6d02c46a831aa411eaa25575
SHA1

468a15620d8869d4bc6cfc1565f90818ee0396df
SHA256

e3556df958c0f5b47516ad79b2dd29ded46c1583c0ffe691f2f3d84cc0b5dc1b
SHA512

898d4ca021874d49b3c9d211db89a8c1b4670dea53e175ca565bcc778ecbe539ddfa01500be8fc1bb115590d6d53160c22f34c36571ac7767ca5fd388af0c8dc
SSDEEP

6144:MmAnLuAHsAED2p4718Uvlmnd71ZBziQO0ZrrMC7C2:M1qAHsAw718IMn3bOQpRQEC2

Score

10^/10

smokeloader 2023 backdoor discovery trojan

Malware Config

Extracted

Family

smokeloader

Botnet

2023

Targets

- Target
  
  e3556df958c0f5b47516ad79b2dd29ded46c1583c0ffe691f2f3d84cc0b5dc1b
- Size
  
  330KB
- MD5
  
  ea7781cd6d02c46a831aa411eaa25575
- SHA1
  
  468a15620d8869d4bc6cfc1565f90818ee0396df
- SHA256
  
  e3556df958c0f5b47516ad79b2dd29ded46c1583c0ffe691f2f3d84cc0b5dc1b
- SHA512
  
  898d4ca021874d49b3c9d211db89a8c1b4670dea53e175ca565bcc778ecbe539ddfa01500be8fc1bb115590d6d53160c22f34c36571ac7767ca5fd388af0c8dc
- SSDEEP
  
  6144:MmAnLuAHsAED2p4718Uvlmnd71ZBziQO0ZrrMC7C2:M1qAHsAw718IMn3bOQpRQEC2
Score

10^/10

smokeloader 2023 backdoor discovery trojan
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
- Smokeloader family
  smokeloader
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

smokeloader2023backdoordiscoverytrojan

behavioral2

smokeloader2023backdoordiscoverytrojan