smokeloader | 4154d5f46fcd5fd8293ea1236de2deaaa7bc882e5a1474669374b69f79827c01 | Triage

Sharing

General

Target

4154d5f46fcd5fd8293ea1236de2deaaa7bc882e5a1474669374b69f79827c01
Size

208KB
Sample

241108-ykevhs1ldk
MD5

77b493dabbd25c9509b3f82bf3a7efb7
SHA1

eb7c03c6583dcfa53a9bf293ee2b31178412105d
SHA256

4154d5f46fcd5fd8293ea1236de2deaaa7bc882e5a1474669374b69f79827c01
SHA512

023a681e7288a22456b41aea9945ad5249e170e6b9de38381657f7a7f31aa820ea16c303df3b9c6f1a1de377c13b55da755cfdd4fc75a5909921caa62b96ee91
SSDEEP

3072:qk4+RwORJEDuYnQOXAgbX059euMv8QQfKkXycJ7NHjFeWJWWFHcruMWMuqT6G:7wORJ01nQr7HmfMKkRtBvJxHcitMuqb

Score

10^/10

smokeloader backdoor discovery trojan

Malware Config

Targets

- Target
  
  687d5a6d462c3bdf402eba5e500f1a7e9eea24ec3199d931dff7cba7a576defa
- Size
  
  302KB
- MD5
  
  28da9336ed4239808c5a9c66cd8493bd
- SHA1
  
  0c60d8b13e570075ddb4dc49f4af4a7dca32be47
- SHA256
  
  687d5a6d462c3bdf402eba5e500f1a7e9eea24ec3199d931dff7cba7a576defa
- SHA512
  
  2eee4d4c70ac247a5cd0cce853245bd321dc5cca236215dc80a3eed4a8a2f9f81910cef515af212f85bb17783a87466ff2725a700dc1eb1611b9e98d2802cc16
- SSDEEP
  
  6144:CN83F5wdQyHltcTMTuLJvu0BSCtqvCmcLrX4lO6fE6Nn:HDwWolOwTuVbBUELrDJ6N
Score

10^/10

smokeloader backdoor discovery trojan
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
- Smokeloader family
  smokeloader
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

smokeloaderbackdoordiscoverytrojan

behavioral2

smokeloaderbackdoordiscoverytrojan