smokeloader | 02db7fda1b888600742e9b02d64a0a053a2829c0aecda08af986e7026595a954 | Triage

Sharing

General

Target

02db7fda1b888600742e9b02d64a0a053a2829c0aecda08af986e7026595a954
Size

147KB
Sample

241110-dkkqjsycmc
MD5

5a92c380094b8168ae2a6b2216a0053c
SHA1

7b2b731df7a4b6e4ede438cc742d0aa43010b2da
SHA256

02db7fda1b888600742e9b02d64a0a053a2829c0aecda08af986e7026595a954
SHA512

4b6418030ceda426f4c104a407728f4d6be1a2f326482e8c55a5287a426642d285426ff3a788677c6444ba02974e08819a9bccddd4cc7f38f5159ec1e53a7ab4
SSDEEP

3072:lmerlxvJhDZsFkROaqLPhUJtQuQMKRIiV2Z+ynI5yFV:Iy91ZrhYUJtQOiVS+ynIoL

Score

10^/10

smokeloader backdoor discovery trojan

Malware Config

Targets

- Target
  
  b9b26b72ad632fad454dc3872ef1121a298ecd9ccea007c8295fab30a3819ced.exe
- Size
  
  275KB
- MD5
  
  acbdc7d1292f8726925582cd16aab92b
- SHA1
  
  9a573dfdbc708f49bb6bd7fe8907a0cab42737d4
- SHA256
  
  b9b26b72ad632fad454dc3872ef1121a298ecd9ccea007c8295fab30a3819ced
- SHA512
  
  70775d08d4e29d0defce3a8d3d7f8931e6a60697c5f875ffd01309a989152b984ddb0b26488eb6eec41e23aa32e922a03015e253f8377bf8f6295aca81cc3a40
- SSDEEP
  
  3072:ZkTy7L2xsJ9yC/ZB6d3s6d5Uj9yeSDfT6e9kbLuh/XKE:q+L2yyZs6d2j9f2ib6h
Score

10^/10

smokeloader backdoor trojan discovery
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
- Smokeloader family
  smokeloader
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

smokeloaderbackdoortrojan

behavioral2

smokeloaderbackdoordiscoverytrojan