smokeloader | 20b631615b20f22106dab30f5ce0522ee754851e11783701a4346c822751bd96 | Triage

Sharing

General

Target

20b631615b20f22106dab30f5ce0522ee754851e11783701a4346c822751bd96
Size

229KB
Sample

241108-1wcweazmgv
MD5

9e6d4bb460babdc1b8cdcc826ca3d978
SHA1

b6e2613b67ba9c3b67d1fe5687ff4317963581c8
SHA256

20b631615b20f22106dab30f5ce0522ee754851e11783701a4346c822751bd96
SHA512

dd4b187167803d7ca585626685b580b5cc3fa4972daef43af0fe2d5c3240b6b513dae4407bdf4bb7c1a704d704d02bd00b15af5a0267d8a39c5e58eaefc634a0
SSDEEP

6144:U8Vy3QXNwmu21QMoCj7jEORgcydk11mqwhGBTn7RKCp:H22NwmuqQM7XYaH48RNJ

Score

10^/10

smokeloader 2023 backdoor discovery trojan

Malware Config

Extracted

Family

smokeloader

Botnet

2023

Targets

- Target
  
  95552374c966e7e0c828729c6feb3673c57b699e5eac47f5d7045622cded34b1
- Size
  
  366KB
- MD5
  
  653f5664a34ca751181eab3db9429322
- SHA1
  
  b272250532a3d8baf3d41ead1731f95db2a4fd15
- SHA256
  
  95552374c966e7e0c828729c6feb3673c57b699e5eac47f5d7045622cded34b1
- SHA512
  
  2567d3653e2c9a83c1670209541b233c530f3b207014090b5c3dc24f99662ae9a9c3f702398eec5b09d685caf7b2583cb3210773845e0306bf44638f2aa50a43
- SSDEEP
  
  6144:zJLnfz3gWpwjEnoCj7jEOTTBLooxupmLYi3jT:zJL73l6jEn7XY2ThooxupmLYi
Score

10^/10

smokeloader 2023 backdoor discovery trojan
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
- Smokeloader family
  smokeloader
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

smokeloader2023backdoordiscoverytrojan

behavioral2

smokeloader2023backdoordiscoverytrojan