smokeloader | 7e32246b94f18bb427c454fcaba418783da308469ce7901142e5344107d36a15 | Triage

Sharing

General

Target

JaffaCakes118_815e2318a44c4b92c836992683f7d5d6
Size

285KB
Sample

250108-axpcqawlct
MD5

815e2318a44c4b92c836992683f7d5d6
SHA1

de02db5e13886e8c834cbb9df91567a3c2758a31
SHA256

7e32246b94f18bb427c454fcaba418783da308469ce7901142e5344107d36a15
SHA512

d763a131f047ebb510864b6d922646beff9ff347555755a30057a8891bfaaca3900f8be7b1ab7ba10cf9eb2be17bf63bbd67b1d414ba7c1ef40ae521a5d8ed40
SSDEEP

6144:xnLNmN0GRzcklSKEAN2GnC1v4bvNLMFbBNAx0uglH01sESP:pLNmNlcTS6vev10NsxglH0GES

Score

10^/10

smokeloader backdoor discovery trojan

Malware Config

Targets

- Target
  
  JaffaCakes118_815e2318a44c4b92c836992683f7d5d6
- Size
  
  285KB
- MD5
  
  815e2318a44c4b92c836992683f7d5d6
- SHA1
  
  de02db5e13886e8c834cbb9df91567a3c2758a31
- SHA256
  
  7e32246b94f18bb427c454fcaba418783da308469ce7901142e5344107d36a15
- SHA512
  
  d763a131f047ebb510864b6d922646beff9ff347555755a30057a8891bfaaca3900f8be7b1ab7ba10cf9eb2be17bf63bbd67b1d414ba7c1ef40ae521a5d8ed40
- SSDEEP
  
  6144:xnLNmN0GRzcklSKEAN2GnC1v4bvNLMFbBNAx0uglH01sESP:pLNmNlcTS6vev10NsxglH0GES
Score

10^/10

smokeloader backdoor discovery trojan
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
- Smokeloader family
  smokeloader
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

smokeloaderbackdoordiscoverytrojan

behavioral2

smokeloaderbackdoordiscoverytrojan