smokeloader | 2cb6c89c9e9f7e2b868a4772fb01df46437e8a6dc3a7d02dbc328b6a999fdadb | Triage

Sharing

General

Target

20213529363.zip
Size

28KB
Sample

241206-x19jdsyndl
MD5

d9c6e91019379dd40dfec55a30d9fa67
SHA1

36b95a2a3121f2092c6c0386030b7f53e8df33d8
SHA256

2cb6c89c9e9f7e2b868a4772fb01df46437e8a6dc3a7d02dbc328b6a999fdadb
SHA512

6c895df04d6297f271923605cffd78681ae51b97f7431733f10d0f060184cb95efef34ef25a26fb10fdb2b0593919fa7dc64330a1ded23d584c04a548c9f1517
SSDEEP

768:ImIG/Ua5H864j2W/Vqe8iy7g018ywc6f8FrUOG:Iba5c2Ce7NaGO8lUD

Score

10^/10

smokeloader backdoor discovery trojan

Malware Config

Targets

- Target
  
  f7544f07b4468e38e36607b5ac5b3835eac1487e7d16dd52ca882b3d021c19b6
- Size
  
  37KB
- MD5
  
  9c0de297b9ea30ffbe100ee12150f122
- SHA1
  
  da6096edee23cfd59cf90c1e6a3a9146ae9d5ff0
- SHA256
  
  f7544f07b4468e38e36607b5ac5b3835eac1487e7d16dd52ca882b3d021c19b6
- SHA512
  
  ee92b7ed7a10febd6f3d9f826b72e1f9f57be2183ae959528b4328411069baa633ee6c1b1f5beda76c8616e4f8e56fa24a7a2076f84cc400402551e61cf95721
- SSDEEP
  
  384:sKZ1vXmx5SW6+aWmDVRuLMROLHrN/DKMtoCDl67us6lmXBhXSSS5d8P38lH9yvLJ:NvKaWmOvZxlV5AXHSLd8Uldyvjwt
Score

10^/10

smokeloader backdoor trojan discovery
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
- Smokeloader family
  smokeloader
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

smokeloaderbackdoortrojan

behavioral2

smokeloaderbackdoordiscoverytrojan