smokeloader | 564bb842def57e4afad2a77ed16275f30c33cb2802c1c7f4f5df626d3d423e7d | Triage

Sharing

General

Target

37419d3a8a50d2e5bc0eef676a37d6757ba43a64eff868edb4af5c386900235f.zip
Size

154KB
Sample

241108-b2evhssdpd
MD5

25b40b2cfed90106340f56acf5e4fe70
SHA1

796163a84909a0f8c0581565075a731f1939e3db
SHA256

564bb842def57e4afad2a77ed16275f30c33cb2802c1c7f4f5df626d3d423e7d
SHA512

62a52c7bc82691880279eab4f9ee6a9e26eae4505a2f7be1a9c150c5504540b7e2cd9f0dcb8304cac7a1ee9ef885db3e241299ce47c9c3090e43d4dd63a954ea
SSDEEP

3072:y9VabRwzRMMlxlEnzhkORbIQhGwurCi6QleUC6cLREWUV/07r+bM5ZZqikhUDX:yYy0n9nThc+iBlzCTLRWU+bMFqbhUDX

Score

10^/10

smokeloader backdoor discovery trojan

Malware Config

Targets

- Target
  
  37419d3a8a50d2e5bc0eef676a37d6757ba43a64eff868edb4af5c386900235f.exe
- Size
  
  248KB
- MD5
  
  1f243595efaa54f6c37a089ec7847c6d
- SHA1
  
  83eb38d9f85bdcf12cb781fad34ceb1e31b34b5a
- SHA256
  
  37419d3a8a50d2e5bc0eef676a37d6757ba43a64eff868edb4af5c386900235f
- SHA512
  
  58e936e2c5b44a489c75494102228d11d6aa6d3e26e687f20923437c1d44b2e9af5533e3ea53c178c2bc70d656f913158dbc0f5cd8cdc7a3738cba8ad6cbff55
- SSDEEP
  
  3072:IDGh7pXYLE2d5+8XTQhtetONYWO9jfBU393KySv53brCTxI:RpXYLEcfXT3hRfG3kyevCFI
Score

10^/10

smokeloader backdoor trojan discovery
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
- Smokeloader family
  smokeloader
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

smokeloaderbackdoortrojan

behavioral2

smokeloaderbackdoordiscoverytrojan