smokeloader | 959c7852f7b4640deae1d2b888971260adcd40517bded9c8e9f577f2f28ed3ef | Triage

Sharing

General

Target

b8324acaafaf40cebfe3c91ff01a33b6bin.zip
Size

177KB
Sample

241201-rz5adsykgq
MD5

daa53362f343c6165c154b3832c8a075
SHA1

17d5a593cbb2c9ddcdf635838137d92ee01120b6
SHA256

959c7852f7b4640deae1d2b888971260adcd40517bded9c8e9f577f2f28ed3ef
SHA512

3f43db31feb378b0aa3dc537b899856c46f6741eaa1510119c6d0e215a347b9bd2fe0efb9479fadb41b34d3c9c7e1101c616fc800a95883ebcde4857d942f659
SSDEEP

3072:j7pGMTozmLPYSIYPEpYIbivDJ6Amtml6smjXo0qAiJuU2D1fax37Wcx3j79d:jNPT9bFPEpHivDJ6AmtDvql4U2F+7xXz

Score

10^/10

smokeloader backdoor discovery trojan

Malware Config

Targets

- Target
  
  8fca1f9021a9ced5f64038dfd78e59a5aa1250758d1455064a752fd142da4a14.exe
- Size
  
  290KB
- MD5
  
  b8324acaafaf40cebfe3c91ff01a33b6
- SHA1
  
  fe686866bb58ae8c4c72edd1686ca2fa5bda16c0
- SHA256
  
  8fca1f9021a9ced5f64038dfd78e59a5aa1250758d1455064a752fd142da4a14
- SHA512
  
  bcd5799fb37cbac22b8963b80966c421831caa53cf95c50f1a5564bdaf41d2e1f99329e01f6a371093874f31adc8e122e875be6fe6a04fe44304c4e8601b6cb5
- SSDEEP
  
  6144:Eec43GFV0FLNzEw8Y6Eeq7fvueRu/6wmbRXMA:Eu3GFmFpzEmeWueK6Nbph
Score

10^/10

smokeloader backdoor trojan discovery
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
- Smokeloader family
  smokeloader
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

smokeloaderbackdoortrojan

behavioral2

smokeloaderbackdoordiscoverytrojan