smokeloader | 58195ded048a529b594c7c15cba762aa6052ac34e074e9b9650461a1df824bbd | Triage

Sharing

General

Target

58195ded048a529b594c7c15cba762aa6052ac34e074e9b9650461a1df824bbd
Size

140KB
Sample

241108-qlxgystaje
MD5

66ed05c260b08f0f8ff255bbf088aeaa
SHA1

4c49ce1dbc0b235771e90dd4eb0caecf4ad294bc
SHA256

58195ded048a529b594c7c15cba762aa6052ac34e074e9b9650461a1df824bbd
SHA512

5fdecfbd83dfebfbb25dec16fdf0559f252f7d46e4a14fc9fa6ba9ff87e74efc8330e6de60ecbf7cae3425c63adc414dc5535d8a124239243d5adf261edd0733
SSDEEP

3072:hkEvx3l6xO3EGFdDgUNS5stO7J0xNdhrWur8gRrlL:WapT3EmdDDNS5+O7wRrNr8SlL

Score

10^/10

smokeloader 2023 backdoor discovery trojan

Malware Config

Extracted

Family

smokeloader

Botnet

2023

Targets

- Target
  
  f03cfa30317eefbc658e645242cf7be5a3d012cc26d91f04284b80127d07b6ce
- Size
  
  232KB
- MD5
  
  612690d2d2a6c5aec8e5b623e2c390cf
- SHA1
  
  8f05ab45296839473b91afd9f4ad158f6bd1c2ba
- SHA256
  
  f03cfa30317eefbc658e645242cf7be5a3d012cc26d91f04284b80127d07b6ce
- SHA512
  
  894691078f834e5038c03ab32d46fee12719af18357c48cdd9b511c196828b9e64d8d10a563aac7693eb024fd968fcb2085af03b9072acf7eb58bb9f0888f88c
- SSDEEP
  
  3072:sl8NLawRLUhJ5hX6YMnfaJJZ4s2/nIVzW+5SeAddxZtJ/SRLjw7RkxmJZs:tLFRLk7J/4BEW+ce6dxPJ/SZGymI
Score

10^/10

smokeloader 2023 backdoor trojan discovery
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
- Smokeloader family
  smokeloader
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

smokeloader2023backdoortrojan

behavioral2

smokeloader2023backdoordiscoverytrojan