smokeloader | 6f4ac7fed0c7abc057d6f9f49a06501458752e5840791637bf031e378718d931 | Triage

Sharing

General

Target

2025-03-11_9b4d53177b6c9652cdb6d9a840ef3c79_mafia
Size

410KB
Sample

250311-rz4zmawyay
MD5

9b4d53177b6c9652cdb6d9a840ef3c79
SHA1

1702973f1dc004fb48cb48486a6bc98b19478540
SHA256

6f4ac7fed0c7abc057d6f9f49a06501458752e5840791637bf031e378718d931
SHA512

1da675585e0a9a15ca026cd628d431ee430ba12c54bbd474621b843f8808d5f53f3778313f479ea65106d806a298a53d4c828b0e868a21bb0e94e690ab6d0893
SSDEEP

6144:r/eOsMTLvp6u+YL4iCk5/kFYH3s38PC+63dOz8pyNY6EEAXEGiEadORf:SMt+YjJ3s3GC+IO8wDEbX7l9

Score

10^/10

smokeloader 0008 backdoor discovery trojan

Malware Config

Extracted

Family

smokeloader

Botnet

0008

Targets

- Target
  
  2025-03-11_9b4d53177b6c9652cdb6d9a840ef3c79_mafia
- Size
  
  410KB
- MD5
  
  9b4d53177b6c9652cdb6d9a840ef3c79
- SHA1
  
  1702973f1dc004fb48cb48486a6bc98b19478540
- SHA256
  
  6f4ac7fed0c7abc057d6f9f49a06501458752e5840791637bf031e378718d931
- SHA512
  
  1da675585e0a9a15ca026cd628d431ee430ba12c54bbd474621b843f8808d5f53f3778313f479ea65106d806a298a53d4c828b0e868a21bb0e94e690ab6d0893
- SSDEEP
  
  6144:r/eOsMTLvp6u+YL4iCk5/kFYH3s38PC+63dOz8pyNY6EEAXEGiEadORf:SMt+YjJ3s3GC+IO8wDEbX7l9
Score

10^/10

smokeloader 0008 backdoor discovery trojan
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
- Smokeloader family
  smokeloader
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

smokeloader0008backdoordiscoverytrojan

behavioral2

smokeloader0008backdoordiscoverytrojan