smokeloader | 5345f88b858272620a7650f5c12b1e97321d0200db12638c925a5fa0d4f77635 | Triage

Sharing

General

Target

5345f88b858272620a7650f5c12b1e97321d0200db12638c925a5fa0d4f77635
Size

188KB
Sample

241109-kpmt2a1gjd
MD5

8c51f9b71b4381a3f4795246db7b77df
SHA1

24caf67c8b0edfcf7b9395bfac215a797d2e4a95
SHA256

5345f88b858272620a7650f5c12b1e97321d0200db12638c925a5fa0d4f77635
SHA512

e8bfd7db8e92af0a04592d9dae9bd18f50b0a21cc6bcc69735b15fa081f4c18aae69193c2c0f48d3b816806b92637a0621702e917aadca18c80958b51764cf4d
SSDEEP

3072:ykXlcZPVtaA2LBeBZet7ResfwQs8tf/KZwXdCsI7hdHKqmvTczZ8WWJ:bq1KhLBeBZeOsfwRzWAsI7+qmC8WW

Score

10^/10

smokeloader backdoor discovery trojan

Malware Config

Targets

- Target
  
  5345f88b858272620a7650f5c12b1e97321d0200db12638c925a5fa0d4f77635
- Size
  
  188KB
- MD5
  
  8c51f9b71b4381a3f4795246db7b77df
- SHA1
  
  24caf67c8b0edfcf7b9395bfac215a797d2e4a95
- SHA256
  
  5345f88b858272620a7650f5c12b1e97321d0200db12638c925a5fa0d4f77635
- SHA512
  
  e8bfd7db8e92af0a04592d9dae9bd18f50b0a21cc6bcc69735b15fa081f4c18aae69193c2c0f48d3b816806b92637a0621702e917aadca18c80958b51764cf4d
- SSDEEP
  
  3072:ykXlcZPVtaA2LBeBZet7ResfwQs8tf/KZwXdCsI7hdHKqmvTczZ8WWJ:bq1KhLBeBZeOsfwRzWAsI7+qmC8WW
Score

10^/10

smokeloader backdoor discovery trojan
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
- Smokeloader family
  smokeloader
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

smokeloaderbackdoordiscoverytrojan

behavioral2

smokeloaderbackdoordiscoverytrojan