smokeloader | 956d26faa5918ac6316a03c6436b8286ee299814b19a0e14946b8f6d5e269f53 | Triage

Sharing

General

Target

956d26faa5918ac6316a03c6436b8286ee299814b19a0e14946b8f6d5e269f53
Size

279KB
Sample

241109-sa6mlayrhn
MD5

d04fba670d6f99659e5cf732fdcff53c
SHA1

0b255de8de21179fa1ad05638f2ba85861686fee
SHA256

956d26faa5918ac6316a03c6436b8286ee299814b19a0e14946b8f6d5e269f53
SHA512

81677d7c13226a781f849258205dd1ff785214aa4957cce7b9d53b2701fd5ee83459022dc5e9f0ec355204723af5661ff3749e3065d7c323299f200a9ee5be4c
SSDEEP

6144:dAWzp/kQNzXMWJsF3c/PtGmNobiT48zZs3AbrqTUkHhSfbr5w:dpzBk0zXfQEPtGmNobiT48VATBH0fbr

Score

10^/10

smokeloader 2023 backdoor discovery trojan

Malware Config

Extracted

Family

smokeloader

Botnet

2023

Targets

- Target
  
  956d26faa5918ac6316a03c6436b8286ee299814b19a0e14946b8f6d5e269f53
- Size
  
  279KB
- MD5
  
  d04fba670d6f99659e5cf732fdcff53c
- SHA1
  
  0b255de8de21179fa1ad05638f2ba85861686fee
- SHA256
  
  956d26faa5918ac6316a03c6436b8286ee299814b19a0e14946b8f6d5e269f53
- SHA512
  
  81677d7c13226a781f849258205dd1ff785214aa4957cce7b9d53b2701fd5ee83459022dc5e9f0ec355204723af5661ff3749e3065d7c323299f200a9ee5be4c
- SSDEEP
  
  6144:dAWzp/kQNzXMWJsF3c/PtGmNobiT48zZs3AbrqTUkHhSfbr5w:dpzBk0zXfQEPtGmNobiT48VATBH0fbr
Score

10^/10

smokeloader 2023 backdoor discovery trojan
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
- Smokeloader family
  smokeloader
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

smokeloader2023backdoordiscoverytrojan

behavioral2

smokeloader2023backdoordiscoverytrojan