smokeloader | 4094b4a53b6b12faa90b741bf3efedcd96ec39200fc457cf1dd73dafa9775f4f | Triage

Sharing

General

Target

4094b4a53b6b12faa90b741bf3efedcd96ec39200fc457cf1dd73dafa9775f4fN.exe
Size

304KB
Sample

250103-xqgqmaykf1
MD5

76c1767f8d4298f7563eff6fbc916910
SHA1

d714c3bd60d157e229b98b6f03ba293e54c95f2a
SHA256

4094b4a53b6b12faa90b741bf3efedcd96ec39200fc457cf1dd73dafa9775f4f
SHA512

5fa552824de77b5b6a252961c7485b376ba60e0868ad3ed50358e7a03bf116f656e0af06955fb73c7ab468425c19ebb7debbd6b3a22d97c9881f34e554fbaa6e
SSDEEP

3072:BHXY0tuJPDRY3qq+bKXlPHB0IEKfgRIT85G6fk4orVQwgn07B49weYX2L3vEPnss:9dcRCqq+GRh0IhfWc9VTywzmL3vHI7d

Score

10^/10

smokeloader pub4 backdoor discovery trojan

Malware Config

Extracted

Family

smokeloader

Botnet

pub4

Targets

- Target
  
  4094b4a53b6b12faa90b741bf3efedcd96ec39200fc457cf1dd73dafa9775f4fN.exe
- Size
  
  304KB
- MD5
  
  76c1767f8d4298f7563eff6fbc916910
- SHA1
  
  d714c3bd60d157e229b98b6f03ba293e54c95f2a
- SHA256
  
  4094b4a53b6b12faa90b741bf3efedcd96ec39200fc457cf1dd73dafa9775f4f
- SHA512
  
  5fa552824de77b5b6a252961c7485b376ba60e0868ad3ed50358e7a03bf116f656e0af06955fb73c7ab468425c19ebb7debbd6b3a22d97c9881f34e554fbaa6e
- SSDEEP
  
  3072:BHXY0tuJPDRY3qq+bKXlPHB0IEKfgRIT85G6fk4orVQwgn07B49weYX2L3vEPnss:9dcRCqq+GRh0IhfWc9VTywzmL3vHI7d
Score

10^/10

smokeloader pub4 backdoor discovery trojan
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
- Smokeloader family
  smokeloader
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

smokeloaderpub4backdoordiscoverytrojan

behavioral2

smokeloaderpub4backdoordiscoverytrojan