smokeloader | 48477731c540605dad84300f6f93ad90531d87ada89cad74f064b36bcd89828e | Triage

Sharing

General

Target

48477731c540605dad84300f6f93ad90531d87ada89cad74f064b36bcd89828e
Size

213KB
Sample

241109-ye7nca1bph
MD5

88ffdecb0ac10bb4d781e5ca059ef0eb
SHA1

37799f59086508a5d69dddc4173276bd37ac607f
SHA256

48477731c540605dad84300f6f93ad90531d87ada89cad74f064b36bcd89828e
SHA512

6be29bd110f5a8c67a1c78dc2378c08fbe128035fab530eca488b818492d7d8eb4cf7eaedfb41327f401f0a8a37bbe327bc8da67b9c6eaaed568888c7ab381e6
SSDEEP

6144:ED2yZIhyrwOJwnqzL7LWw1u2HryovVvq60ZjgTI:ED1IEFRv7KSHVdwZ0E

Score

10^/10

smokeloader 2023 backdoor discovery trojan

Malware Config

Extracted

Family

smokeloader

Botnet

2023

Targets

- Target
  
  64c8961580c51d91243226dac1d4b95a4bc9a47f580acadfaa291c3ae1b7e14a
- Size
  
  327KB
- MD5
  
  ffdcce59d85399b04eaf9eae45a4ef00
- SHA1
  
  6da8310b3fb1205e41b66010f30b72336759b5ab
- SHA256
  
  64c8961580c51d91243226dac1d4b95a4bc9a47f580acadfaa291c3ae1b7e14a
- SHA512
  
  2f6f76aa01bb072d66a59a6edec8543b7b0e9fab8a9e91273d103383f942c8111e4b9e65e16763810017de5c4a5b4b89aaf7cb0fb000081d3affed3929d3ff3b
- SSDEEP
  
  6144:hkU4szLY+MQHUhtorwOJwL82XYosWYf67k13bwZ4Vxq:V9zs+MQ0sFV2XxsWYy7
Score

10^/10

smokeloader 2023 backdoor trojan discovery
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
- Smokeloader family
  smokeloader
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

smokeloader2023backdoortrojan

behavioral2

smokeloader2023backdoordiscoverytrojan