smokeloader | b7d118118d88cd47b8cd2466dc74f1275b7c6fbbf4eea6dc87b5c18d811e7ee0 | Triage

Sharing

General

Target

9d731c42cfce373767ef87e3b019cd5a998cadf8
Size

139KB
Sample

241110-3xg8mayanb
MD5

1b83ea49f3d408af5e2f2121bb812893
SHA1

9d731c42cfce373767ef87e3b019cd5a998cadf8
SHA256

b7d118118d88cd47b8cd2466dc74f1275b7c6fbbf4eea6dc87b5c18d811e7ee0
SHA512

5e3b8f10866a1cf951b1a50e3eb77ddbc1ff4f44ab5de0467edf0f95865ab555f4149f525bf4487e527c41404ef606611cb57857e75dc1cb74fcd5ab2e53b5fa
SSDEEP

3072:KUmHbgK2KCuH99C/QlVtWwI+HoeNM/BPbAojZAC+J36mU7iJ76Gc1:dQsK2KCudsoVtfIioNtpYKmU+01

Score

10^/10

smokeloader backdoor discovery trojan

Malware Config

Targets

- Target
  
  43a4e1840626ba6ca1200e81f4f88144572c1ef709b488fc4f8ccc6bbc8d307b
- Size
  
  210KB
- MD5
  
  742ee066d8b6d64b831c6e5bf5383172
- SHA1
  
  fd5429dcd1e0344ee7bc3e24b805fc5b8c039ad2
- SHA256
  
  43a4e1840626ba6ca1200e81f4f88144572c1ef709b488fc4f8ccc6bbc8d307b
- SHA512
  
  243e1354f4fce30d44454f8a295c37228d41f6746396b12278d1c249806cedb4e3e47af0ff16154de32b30ed7e19d70e07cf6258838b4abebd9e8ac51d144d7c
- SSDEEP
  
  3072:bGcd1UOA8/y8OLMWWjf5cCfA1VN4rAeLycd3+s2wHxeDoJG3Q5xWx:bGu2f8/CLMWBB1VN4rAeLJ7rOXv
Score

10^/10

smokeloader backdoor discovery trojan
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
- Smokeloader family
  smokeloader
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

smokeloaderbackdoordiscoverytrojan

behavioral2

smokeloaderbackdoordiscoverytrojan