smokeloader | e12b18395e450ac8d2002761988db2d374062b57c0bdde762c39d438f9ef1a9b | Triage

Sharing

General

Target

e12b18395e450ac8d2002761988db2d374062b57c0bdde762c39d438f9ef1a9b
Size

262KB
Sample

241215-rap46syjbr
MD5

68e8c93c0c231ef5de9299111d7347e4
SHA1

d2841cbe43b55a34a128344881800a15b19e0133
SHA256

e12b18395e450ac8d2002761988db2d374062b57c0bdde762c39d438f9ef1a9b
SHA512

5060e80283f722a04143b0a10a63a36ecba80f5dc7521d55b47018981a4454e748f2b5c1cb04137619b09d67469495ed2087ea7a0dafea94b59f346ccfb00fa4
SSDEEP

3072:7YwDzBsqEOW9Yy2Qm4j+3BE4nrdbArZisxkgaBChUpZa9uD6Vdyhk:0OsqpW9pE3aariZfiga3wVf

Score

10^/10

smokeloader 0009 backdoor discovery trojan

Malware Config

Extracted

Family

smokeloader

Botnet

0009

Targets

- Target
  
  e12b18395e450ac8d2002761988db2d374062b57c0bdde762c39d438f9ef1a9b
- Size
  
  262KB
- MD5
  
  68e8c93c0c231ef5de9299111d7347e4
- SHA1
  
  d2841cbe43b55a34a128344881800a15b19e0133
- SHA256
  
  e12b18395e450ac8d2002761988db2d374062b57c0bdde762c39d438f9ef1a9b
- SHA512
  
  5060e80283f722a04143b0a10a63a36ecba80f5dc7521d55b47018981a4454e748f2b5c1cb04137619b09d67469495ed2087ea7a0dafea94b59f346ccfb00fa4
- SSDEEP
  
  3072:7YwDzBsqEOW9Yy2Qm4j+3BE4nrdbArZisxkgaBChUpZa9uD6Vdyhk:0OsqpW9pE3aariZfiga3wVf
Score

10^/10

smokeloader 0009 backdoor discovery trojan
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
- Smokeloader family
  smokeloader
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

smokeloader0009backdoordiscoverytrojan

behavioral2

smokeloader0009backdoordiscoverytrojan