smokeloader | 02a7ed2121f3fcad722f0c4fa3bea721c023c147401c06ce98906295f7fca434 | Triage

Sharing

General

Target

JaffaCakes118_02a7ed2121f3fcad722f0c4fa3bea721c023c147401c06ce98906295f7fca434
Size

123KB
Sample

241225-p9plkstmgj
MD5

ebf901ec8366ae1581cd4305d027f23d
SHA1

19c4686f2fdc98fbdc9728cd30e0e54e3c1a9bd4
SHA256

02a7ed2121f3fcad722f0c4fa3bea721c023c147401c06ce98906295f7fca434
SHA512

8fe81d5580c17a14d6c526f64305d049971bd9b21c2121a1dfe3a9de3cfff6c3e124cbe1abc45364f71fb83c45c9e013ecbe137f20cf57ede7912ae0f6ca3acc
SSDEEP

3072:3jwDTW7NEEtFYy9NJFxGxqQ7JNlQJpsaSbA:TwDTW7Sep9NJFsxqUNlQ0rM

Score

10^/10

smokeloader backdoor discovery trojan

Malware Config

Targets

- Target
  
  f0d8c6e92f141e5dfbab79ac231f8a6c7282fbe87c63a3e1d880dc8218491910
- Size
  
  172KB
- MD5
  
  2a01bf6696244c499232e4e01e2103a7
- SHA1
  
  364bac98473f938d8e0eff95106b21206818a9d7
- SHA256
  
  f0d8c6e92f141e5dfbab79ac231f8a6c7282fbe87c63a3e1d880dc8218491910
- SHA512
  
  fe313802bd9b81c86f10e9949a7572786ee24ea4921bef6072a74954f61de08476c412e5bbc90b8ae2c5a36e81c483aaafeba3e87c3b8a4c8a348a0aa902c9c1
- SSDEEP
  
  3072:3yJ+v1rudBQgsAtFYy9NJFx6bufbnIZrexdZCIhE4oG9sst+Jp:3Uy1Opp9NJFwInCqbZCEj9v+
Score

10^/10

smokeloader backdoor discovery trojan
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
- Smokeloader family
  smokeloader
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

smokeloaderbackdoordiscoverytrojan

behavioral2

smokeloaderbackdoordiscoverytrojan