smokeloader | 8ea2cd64a68ee6f8ac5d4536c20cfaeebb3634387e9d093672d439a5d471f183 | Triage

Sharing

General

Target

8ea2cd64a68ee6f8ac5d4536c20cfaeebb3634387e9d093672d439a5d471f183
Size

153KB
Sample

241215-rddkjswnht
MD5

538bd2135f2955ebfad3522e2a54ddc0
SHA1

e3900fca609cf51f98a60b69745c498db25d9a69
SHA256

8ea2cd64a68ee6f8ac5d4536c20cfaeebb3634387e9d093672d439a5d471f183
SHA512

39c1b3efb7be4fb08267d627ca34999503f6b35ffe1b51a4310d65c00588d3670a50a8f1935fd7c6787e26582e442f59a6b69ddf3eca30538ad5d0e66a1633e3
SSDEEP

3072:5sZlTYTpcv5SYmJiIfysTcBuzV9xLwO9cq/2BmNnsFL00v16u0VX:a3TYTpcv5Mj7TcBuzV9aqePFYq0u0h

Score

10^/10

smokeloader backdoor discovery trojan

Malware Config

Targets

- Target
  
  47ccb8bdf5c0176f6ab4592f7a03a938c25e80638a3d041ac9b472fe998f6169
- Size
  
  235KB
- MD5
  
  41265b13c5287d8d3c46ebff9b0c90c4
- SHA1
  
  a81283464abbdb7cae4a87c4aac63e32ac4bf3c5
- SHA256
  
  47ccb8bdf5c0176f6ab4592f7a03a938c25e80638a3d041ac9b472fe998f6169
- SHA512
  
  3ed6bb6639a9d452608a10c06b25609b8486c6e5bbbd79d416295d4b94234c8171eb0d540e911cb85b01b08697b465409523c7812620f6fa4e5ba7219a3ffba5
- SSDEEP
  
  6144:qCkzkL4HjDmL9gaND8IOjTYlNKQv9T2lhe6:qOivmxgaR81jM7e
Score

10^/10

smokeloader backdoor trojan discovery
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
- Smokeloader family
  smokeloader
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

smokeloaderbackdoortrojan

behavioral2

smokeloaderbackdoordiscoverytrojan