smokeloader | 611fea4f31f4efeeac72b58a0096e1a38a476430c636a2565f6d5d0ce0f91977 | Triage

Sharing

General

Target

611fea4f31f4efeeac72b58a0096e1a38a476430c636a2565f6d5d0ce0f91977
Size

175KB
Sample

241108-r5yd2atgne
MD5

30d8a9254dc4efb6f6fc98965baa7cf7
SHA1

d2cd08cac6ac30d85ac5921191399ba4847ea7d9
SHA256

611fea4f31f4efeeac72b58a0096e1a38a476430c636a2565f6d5d0ce0f91977
SHA512

fc2dffc0f4cdd56dd809ef5bc13cc3eb0e1faf28a012b2250a601305316493bbbd83bb7efab1b578170614c8d48a17087aa3188c8934b0125d744e9b39cc906b
SSDEEP

3072:/1BvpcyIefGd/ALulfFszejRAwj5S+qVn0SLIKL+UwLwkSwoBZlwRkrTVLk:/7po+GntKKRAyeB0SUW+D8kSwOZaaNY

Score

10^/10

smokeloader 2023 backdoor discovery trojan

Malware Config

Extracted

Family

smokeloader

Botnet

2023

Targets

- Target
  
  3ce17f00e34fae799986833f985ed70be310f7290def5b53264ef0f209e56194
- Size
  
  273KB
- MD5
  
  430f716dcc3b5f288de47bb4d6ddb2db
- SHA1
  
  0d7b0ec982082bcea3f57820de4cdd67a1d005f8
- SHA256
  
  3ce17f00e34fae799986833f985ed70be310f7290def5b53264ef0f209e56194
- SHA512
  
  ad294cabce019a9a1e9cd8dc25e37754c22ba1e0b1937293d307614ec638dd5d173343077687edb9d7185adef49830c19dc1cb80184078629c5e94c2f8079046
- SSDEEP
  
  6144:q9T43mEiPUqpr4TfKRAyeD043IDcjP/VS:q9ifiPUurVyUTDcDVS
Score

10^/10

smokeloader 2023 backdoor discovery trojan
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
- Smokeloader family
  smokeloader
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

smokeloader2023backdoordiscoverytrojan

behavioral2

smokeloader2023backdoordiscoverytrojan