smokeloader | 308cf6781ab8e7a19a2d208b14ecb8e6db7f8efe90959034c5bc478ea007d752 | Triage

Sharing

General

Target

308cf6781ab8e7a19a2d208b14ecb8e6db7f8efe90959034c5bc478ea007d752.exe
Size

240KB
Sample

241207-b7z3msvnfp
MD5

624287f7a79b9ddb001a266e4c0797bd
SHA1

0b3477b57522cd2dad90b8c5659508e639a09e52
SHA256

308cf6781ab8e7a19a2d208b14ecb8e6db7f8efe90959034c5bc478ea007d752
SHA512

fc12eb8d761dfc4001816b3fca9b59efb1eb29eac0ead80682c0977798defc0599f3bb2d39bd403601522043ee3e0d3a0928f347241f5d1bd56ef8cd81facc56
SSDEEP

3072:gRdyL3+vK4cXkRKBOLpgiH+SBcjkdlkWoHJnTHzGjdl8W3jUWV3/HFy:4dyLDZkRKBOLiieSBXlkWopnmxt3PFy

Score

10^/10

smokeloader summ backdoor discovery trojan

Malware Config

Extracted

Family

smokeloader

Botnet

summ

Targets

- Target
  
  308cf6781ab8e7a19a2d208b14ecb8e6db7f8efe90959034c5bc478ea007d752.exe
- Size
  
  240KB
- MD5
  
  624287f7a79b9ddb001a266e4c0797bd
- SHA1
  
  0b3477b57522cd2dad90b8c5659508e639a09e52
- SHA256
  
  308cf6781ab8e7a19a2d208b14ecb8e6db7f8efe90959034c5bc478ea007d752
- SHA512
  
  fc12eb8d761dfc4001816b3fca9b59efb1eb29eac0ead80682c0977798defc0599f3bb2d39bd403601522043ee3e0d3a0928f347241f5d1bd56ef8cd81facc56
- SSDEEP
  
  3072:gRdyL3+vK4cXkRKBOLpgiH+SBcjkdlkWoHJnTHzGjdl8W3jUWV3/HFy:4dyLDZkRKBOLiieSBXlkWopnmxt3PFy
Score

10^/10

smokeloader summ backdoor trojan discovery
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
- Smokeloader family
  smokeloader
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

smokeloadersummbackdoortrojan

behavioral2

smokeloadersummbackdoordiscoverytrojan