smokeloader | 5afbd6c10cfedbd1bb5d15ee22783e41f621b18c134875c6b09276e9b096f85f | Triage

Sharing

General

Target

5afbd6c10cfedbd1bb5d15ee22783e41f621b18c134875c6b09276e9b096f85f
Size

139KB
Sample

241111-eze92stalc
MD5

7c55606c0de2e94425ad51e08f51bf45
SHA1

949725a076d9120dd579fe1edffbf95a32ee9ec6
SHA256

5afbd6c10cfedbd1bb5d15ee22783e41f621b18c134875c6b09276e9b096f85f
SHA512

e67aa3284daf4b110f6e18fe9bb8cfec6328d1555c8d32a7991b040e6372258f94b0a24f2b043f109876b00139d0311a07fdc01f431b369440613e3b17755d42
SSDEEP

1536:d8hT9MEhkNikTgrSf1BZ3CUNAaSe5k6o5m0EI9DbBriobhO2Yp2:JjN5Bf9CUNsAFo5m0EIZRgM

Score

10^/10

smokeloader pub1 backdoor discovery trojan

Malware Config

Extracted

Family

smokeloader

Botnet

pub1

Targets

- Target
  
  5afbd6c10cfedbd1bb5d15ee22783e41f621b18c134875c6b09276e9b096f85f
- Size
  
  139KB
- MD5
  
  7c55606c0de2e94425ad51e08f51bf45
- SHA1
  
  949725a076d9120dd579fe1edffbf95a32ee9ec6
- SHA256
  
  5afbd6c10cfedbd1bb5d15ee22783e41f621b18c134875c6b09276e9b096f85f
- SHA512
  
  e67aa3284daf4b110f6e18fe9bb8cfec6328d1555c8d32a7991b040e6372258f94b0a24f2b043f109876b00139d0311a07fdc01f431b369440613e3b17755d42
- SSDEEP
  
  1536:d8hT9MEhkNikTgrSf1BZ3CUNAaSe5k6o5m0EI9DbBriobhO2Yp2:JjN5Bf9CUNsAFo5m0EIZRgM
Score

10^/10

smokeloader pub1 backdoor trojan discovery
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
- Smokeloader family
  smokeloader
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

smokeloaderpub1backdoortrojan

behavioral2

smokeloaderpub1backdoordiscoverytrojan