smokeloader | 71dcb20f11e4c812a9e570965a7543d2bab944b23f56242d35025151a71d7702 | Triage

Sharing

General

Target

71dcb20f11e4c812a9e570965a7543d2bab944b23f56242d35025151a71d7702
Size

200KB
Sample

241111-ezq2jswmen
MD5

ba272034be5b49d44f1094d5bfa58357
SHA1

b4d0d229548a2537775d9f210afb079e361d2c25
SHA256

71dcb20f11e4c812a9e570965a7543d2bab944b23f56242d35025151a71d7702
SHA512

d038adea4a3d00f0cf3503a3b0b34bd5878932b7c32974a9bcf4089889cc13ddecbc4bd86a8971cd7e005d8aa6c3d6df2b39ca2b57e1105e7f2b0cb9787d6879
SSDEEP

3072:nBN2ZG53LTE+EOMcz5GZtzNGVxQ+tICqHbNt08wwayhR:B1Lg/OMcYZ8tICuX0Y

Score

10^/10

smokeloader 2023 backdoor discovery trojan

Malware Config

Extracted

Family

smokeloader

Botnet

2023

Targets

- Target
  
  71dcb20f11e4c812a9e570965a7543d2bab944b23f56242d35025151a71d7702
- Size
  
  200KB
- MD5
  
  ba272034be5b49d44f1094d5bfa58357
- SHA1
  
  b4d0d229548a2537775d9f210afb079e361d2c25
- SHA256
  
  71dcb20f11e4c812a9e570965a7543d2bab944b23f56242d35025151a71d7702
- SHA512
  
  d038adea4a3d00f0cf3503a3b0b34bd5878932b7c32974a9bcf4089889cc13ddecbc4bd86a8971cd7e005d8aa6c3d6df2b39ca2b57e1105e7f2b0cb9787d6879
- SSDEEP
  
  3072:nBN2ZG53LTE+EOMcz5GZtzNGVxQ+tICqHbNt08wwayhR:B1Lg/OMcYZ8tICuX0Y
Score

10^/10

smokeloader 2023 backdoor discovery trojan
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
- Smokeloader family
  smokeloader
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

smokeloader2023backdoordiscoverytrojan

behavioral2

smokeloader2023backdoordiscoverytrojan