smokeloader | 5dd5193d961c7103d4e5645b376d370c083444f1a697c6d7c97191e1595c96f5 | Triage

Sharing

General

Target

5dd5193d961c7103d4e5645b376d370c083444f1a697c6d7c97191e1595c96f5
Size

137KB
Sample

241105-ya6kgszldl
MD5

372de42c7504776a7f716c2175e16a31
SHA1

ff225275775518a60f88fec0784c4f00a4d69a06
SHA256

5dd5193d961c7103d4e5645b376d370c083444f1a697c6d7c97191e1595c96f5
SHA512

dab03e96121b8b2f76b97058178a59e830514cd1221244905a065ea4456fdf0b6ef86be247ae14173b88f27a30c5c26aae275f36571d74e4f96b3c4c4e1427cd
SSDEEP

3072:rz2aV9ELh5kQEnx0J207ns+DLBwca7JQzjR4wlxGETi2vafd2YdvnR:/2cEV55gyA1+RM7JyxvCfdldvR

Score

10^/10

smokeloader 2023 backdoor discovery trojan

Malware Config

Extracted

Family

smokeloader

Botnet

2023

Targets

- Target
  
  f2c192a313ba1a48714c0679110c4d6bef91d07a3a51cd5468039c91f7a40e16
- Size
  
  211KB
- MD5
  
  ecd259c4590282887cb034775a54fed1
- SHA1
  
  44d3bc8b81d26da1850ac51eb8c0b370efeb29e0
- SHA256
  
  f2c192a313ba1a48714c0679110c4d6bef91d07a3a51cd5468039c91f7a40e16
- SHA512
  
  4ac84befd3a84e5462cacdaed9f66a327145d7ef2f51676d5ef3a531bba79877127a507772dcfa5a201dc711124ef3b705a13964fc4850d572f00e532eb3b16e
- SSDEEP
  
  3072:kXZEpb7/LgOggvt5VLBsT23YeuccLBwca7JQzjR4wlxVkZht97fu3SP:gW/LUgtLBsT23YvM7Jyxit8
Score

10^/10

smokeloader 2023 backdoor discovery trojan
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
- Smokeloader family
  smokeloader
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

smokeloader2023backdoordiscoverytrojan

behavioral2

smokeloader2023backdoordiscoverytrojan