smokeloader | 27454f182561706a81608812d2de2630b27fd4b8b0429132e2a99328f583410f | Triage

Sharing

General

Target

27454f182561706a81608812d2de2630b27fd4b8b0429132e2a99328f583410f
Size

330KB
Sample

241111-er9hxswlcp
MD5

91d6e18510eef4b2dead93a529485f2e
SHA1

c6c6527092f66568ad1eb9961f5545ee1196837c
SHA256

27454f182561706a81608812d2de2630b27fd4b8b0429132e2a99328f583410f
SHA512

0ae0d9b86342b2e761556c3ef4b1ec520ab1827a6ddd63db32293bb06a66e5fc5602536c89563cb716a9482975df2d69dbb168e947916a493fe401180505086a
SSDEEP

3072:kXxvOHy3USPLNQ+TeY3irFs+5scEVkp6NHIFI4xbCAqnPSVoMbX0yWxK0rMVt7ST:gBOHyEwLz3sFsJSpKARn6M70ZrrMC7C

Score

10^/10

smokeloader 2023 backdoor discovery trojan

Malware Config

Extracted

Family

smokeloader

Botnet

2023

Targets

- Target
  
  27454f182561706a81608812d2de2630b27fd4b8b0429132e2a99328f583410f
- Size
  
  330KB
- MD5
  
  91d6e18510eef4b2dead93a529485f2e
- SHA1
  
  c6c6527092f66568ad1eb9961f5545ee1196837c
- SHA256
  
  27454f182561706a81608812d2de2630b27fd4b8b0429132e2a99328f583410f
- SHA512
  
  0ae0d9b86342b2e761556c3ef4b1ec520ab1827a6ddd63db32293bb06a66e5fc5602536c89563cb716a9482975df2d69dbb168e947916a493fe401180505086a
- SSDEEP
  
  3072:kXxvOHy3USPLNQ+TeY3irFs+5scEVkp6NHIFI4xbCAqnPSVoMbX0yWxK0rMVt7ST:gBOHyEwLz3sFsJSpKARn6M70ZrrMC7C
Score

10^/10

smokeloader 2023 backdoor discovery trojan
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
- Smokeloader family
  smokeloader
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

smokeloader2023backdoordiscoverytrojan

behavioral2

smokeloader2023backdoordiscoverytrojan