smokeloader | abdb49a59e8ee689b9060fd3471337e10fb37ead792b4c3adbbff81b286f9058 | Triage

Sharing

General

Target

abdb49a59e8ee689b9060fd3471337e10fb37ead792b4c3adbbff81b286f9058.exe
Size

251KB
Sample

241118-pqanbawfja
MD5

cab7f3d725d4b0be934aad99feb640c1
SHA1

b0ef4d3d52944f33aba78a03a82cb2b4f404eaff
SHA256

abdb49a59e8ee689b9060fd3471337e10fb37ead792b4c3adbbff81b286f9058
SHA512

fce39a814d079d3a8fe6fcdd4133d7fb5aa3dc7c6b0b81bc755c9792af66f44d9edee13212579711c9d9cd227c860de46d577d2138eb9853bb7e11b3a224d7f4
SSDEEP

3072:9UfwTzccjEXIh2bBhQ4EDEFBwOmZNx9TQ5xHE94ztlWw:+CzcTXnBhgDJOeR9Ev/

Score

10^/10

smokeloader pub4 backdoor discovery trojan

Malware Config

Extracted

Family

smokeloader

Botnet

pub4

Targets

- Target
  
  abdb49a59e8ee689b9060fd3471337e10fb37ead792b4c3adbbff81b286f9058.exe
- Size
  
  251KB
- MD5
  
  cab7f3d725d4b0be934aad99feb640c1
- SHA1
  
  b0ef4d3d52944f33aba78a03a82cb2b4f404eaff
- SHA256
  
  abdb49a59e8ee689b9060fd3471337e10fb37ead792b4c3adbbff81b286f9058
- SHA512
  
  fce39a814d079d3a8fe6fcdd4133d7fb5aa3dc7c6b0b81bc755c9792af66f44d9edee13212579711c9d9cd227c860de46d577d2138eb9853bb7e11b3a224d7f4
- SSDEEP
  
  3072:9UfwTzccjEXIh2bBhQ4EDEFBwOmZNx9TQ5xHE94ztlWw:+CzcTXnBhgDJOeR9Ev/
Score

10^/10

smokeloader pub4 backdoor trojan discovery
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
- Smokeloader family
  smokeloader
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

smokeloaderpub4backdoortrojan

behavioral2

smokeloaderpub4backdoordiscoverytrojan