smokeloader | b691f02da8078745eea923ea305bcddc377c50d214cb531284e86b4d5c1025b0 | Triage

Sharing

General

Target

b691f02da8078745eea923ea305bcddc377c50d214cb531284e86b4d5c1025b0
Size

214KB
Sample

241107-l36pqszjhv
MD5

5e8b41e37d55fbb987d824e3010caafe
SHA1

450562fc2cb9a92ca70573bad727e32ed5d171dd
SHA256

b691f02da8078745eea923ea305bcddc377c50d214cb531284e86b4d5c1025b0
SHA512

dda04b520cd990030626f498480ba835803d07779cd2fc3571e0ee864b2c3b67205f2afcad8eea87435e4c33be43a42e7c616a1939818ee2adb487af4b9495ff
SSDEEP

3072:mjadwICnX+t1Kz3j9OFjQ//4Y//NKBHw84k0tyiIA+85i1IlkRU6KGCiFpyOKSUk:mOdwIUTjdcHw9CNU6KGNBKGMffhCuC

Score

10^/10

smokeloader backdoor discovery trojan

Malware Config

Targets

- Target
  
  8767b153be8b11a467e1906ae2c1e14d916e79bc6cc81e9545d93e863d66f021
- Size
  
  328KB
- MD5
  
  3770e6dc880e918845b788dcf77da877
- SHA1
  
  b269ccc0531c0573324eeb1a53b9c0b6a614731f
- SHA256
  
  8767b153be8b11a467e1906ae2c1e14d916e79bc6cc81e9545d93e863d66f021
- SHA512
  
  52ae1a4b4b80bd9394d77b122cd87cf98a7c8c6b729d93b0fb9234e4f57622b0d9b5dfe7880e63d051d64fab7c5b428f29c75e8360089f2b18b840b1f5591d37
- SSDEEP
  
  6144:cDq/oZZLcw4kCRXL+hZHGf/eRknHFgKtyvV/lpLje1atpBYqbM:cDBZZYHkNnHGcclV2vljaatUwM
Score

10^/10

smokeloader backdoor discovery trojan
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
- Smokeloader family
  smokeloader
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

smokeloaderbackdoordiscoverytrojan

behavioral2

smokeloaderbackdoordiscoverytrojan