smokeloader | f479ea8f150e02eb86c9a0c96ce3a9a68754c5644b61d2102d446c4229e9519a | Triage

Sharing

General

Target

f479ea8f150e02eb86c9a0c96ce3a9a68754c5644b61d2102d446c4229e9519a
Size

195KB
Sample

241110-fzt9mszmbs
MD5

5d7a12770e3fdddbacee41ade75755b9
SHA1

f2219c9b96b588ceedb6e35acd134a3f85dac435
SHA256

f479ea8f150e02eb86c9a0c96ce3a9a68754c5644b61d2102d446c4229e9519a
SHA512

028e9c8b5f3838717bb9aba472dee2a5c5feb0fc36634fcd0660b1c79264e7ff5714217df09b3e0f1d9d68b1d50093b280dc2da12ae9895c57402d3bc9f370cc
SSDEEP

3072:zX54XD+ILg6VXdM/5NMTfn27Znf17eLLKV+W3ZhyzawErb:rNILBdM/wkZCGYWryz2

Score

10^/10

smokeloader 2023 backdoor discovery trojan

Malware Config

Extracted

Family

smokeloader

Botnet

2023

Targets

- Target
  
  f479ea8f150e02eb86c9a0c96ce3a9a68754c5644b61d2102d446c4229e9519a
- Size
  
  195KB
- MD5
  
  5d7a12770e3fdddbacee41ade75755b9
- SHA1
  
  f2219c9b96b588ceedb6e35acd134a3f85dac435
- SHA256
  
  f479ea8f150e02eb86c9a0c96ce3a9a68754c5644b61d2102d446c4229e9519a
- SHA512
  
  028e9c8b5f3838717bb9aba472dee2a5c5feb0fc36634fcd0660b1c79264e7ff5714217df09b3e0f1d9d68b1d50093b280dc2da12ae9895c57402d3bc9f370cc
- SSDEEP
  
  3072:zX54XD+ILg6VXdM/5NMTfn27Znf17eLLKV+W3ZhyzawErb:rNILBdM/wkZCGYWryz2
Score

10^/10

smokeloader 2023 backdoor discovery trojan
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
- Smokeloader family
  smokeloader
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

smokeloader2023backdoordiscoverytrojan

behavioral2

smokeloader2023backdoordiscoverytrojan