smokeloader | a77a7624d696d718da317700550ba6f71114cf92a9d38256f0caf60633aa1357 | Triage

Sharing

General

Target

9571990643789da1814cbc69b23f671670338385
Size

218KB
Sample

241108-j7m23syjaz
MD5

225dd519fd83ab97a8dea83d76ff03c8
SHA1

9571990643789da1814cbc69b23f671670338385
SHA256

a77a7624d696d718da317700550ba6f71114cf92a9d38256f0caf60633aa1357
SHA512

568450eaf2782ab991472e4846b31a0707e7430dbe02e015bb56fb8559e573bdf0e508bf8b1769328e234c3952c34f14fd0d9433931e5e43ecc22c8a45644ba3
SSDEEP

3072:1Xat/L/uDN95WMbVKTHSnbATYyR41BP+d3RgmuyCZU5tGY5s:xwLWDNGCCacDR4vi3REB2T

Score

10^/10

smokeloader new2 backdoor discovery trojan

Malware Config

Extracted

Family

smokeloader

Botnet

new2

Targets

- Target
  
  9571990643789da1814cbc69b23f671670338385
- Size
  
  218KB
- MD5
  
  225dd519fd83ab97a8dea83d76ff03c8
- SHA1
  
  9571990643789da1814cbc69b23f671670338385
- SHA256
  
  a77a7624d696d718da317700550ba6f71114cf92a9d38256f0caf60633aa1357
- SHA512
  
  568450eaf2782ab991472e4846b31a0707e7430dbe02e015bb56fb8559e573bdf0e508bf8b1769328e234c3952c34f14fd0d9433931e5e43ecc22c8a45644ba3
- SSDEEP
  
  3072:1Xat/L/uDN95WMbVKTHSnbATYyR41BP+d3RgmuyCZU5tGY5s:xwLWDNGCCacDR4vi3REB2T
Score

10^/10

smokeloader new2 backdoor discovery trojan
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
- Smokeloader family
  smokeloader
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

smokeloadernew2backdoordiscoverytrojan

behavioral2

smokeloadernew2backdoordiscoverytrojan