smokeloader | ddb99a5297b070895584527f8ba406e74ee93cf0608832b24e88cd06d784e6ad | Triage

Sharing

General

Target

ddb99a5297b070895584527f8ba406e74ee93cf0608832b24e88cd06d784e6ad
Size

151KB
Sample

241107-cm66wsvqer
MD5

78284855f56815ffd95fd58b3b094195
SHA1

e822f7ceefd86a8fdf8764ee51f00e27fa2343b9
SHA256

ddb99a5297b070895584527f8ba406e74ee93cf0608832b24e88cd06d784e6ad
SHA512

9212ce245ecf811d653e97ad7888a1697cad4095202a363f20031d0982b49338c5c7eaba0d5e1b0caede321ff93afce6e52cd980e8a81f8bb8266bbd24d05e67
SSDEEP

3072:wxAp2c2yVxnbpE9HKvXt8S2xtfvjsjKGUJJRYpRQEEZ/81jYEn7xZsHfmWCGCX+I:N2clRSxRrqKGUJPYpdEZ/81jp7nsHrCl

Score

10^/10

smokeloader 2023 backdoor discovery trojan

Malware Config

Extracted

Family

smokeloader

Botnet

2023

Targets

- Target
  
  cc0266751c66ead81949b05f7d0a52a1884e4e0696ce7eab93baa3ab3cd34779
- Size
  
  241KB
- MD5
  
  7a528042a31a891162d51ec393097438
- SHA1
  
  72914c36e043e50cb2f7a1eb10e99e579b01a186
- SHA256
  
  cc0266751c66ead81949b05f7d0a52a1884e4e0696ce7eab93baa3ab3cd34779
- SHA512
  
  70fd3484bdcc0e9474ccdd535203d1b3db8ce38aacaeb468c6eaa17d6f63c7ed1577feb48e8fba689f13f1ba5e756391909b2be92a0ca9cc7e3f8590435011a3
- SSDEEP
  
  3072:D8XZV3RqvL976YYdaqi5UgnhSPLfvjsjKGUJJRYpfZ3WkRtM2nvQGW7iSWt:8xqvL+wSgnYPLrqKGUJPYpfZttV4b7i
Score

10^/10

smokeloader 2023 backdoor discovery trojan
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
- Smokeloader family
  smokeloader
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

smokeloader2023backdoordiscoverytrojan

behavioral2

smokeloader2023backdoordiscoverytrojan