smokeloader | bd05f805a5d224f1b73f1cba33438777abe441c3c625109a5d3342be6e684b20 | Triage

Sharing

General

Target

bd05f805a5d224f1b73f1cba33438777abe441c3c625109a5d3342be6e684b20.exe
Size

230KB
Sample

250318-js1dvs1kw5
MD5

ce8a71360c7571d605225cfe72938290
SHA1

cef429bd50198b60ccc172dcec24db3bec543b2a
SHA256

bd05f805a5d224f1b73f1cba33438777abe441c3c625109a5d3342be6e684b20
SHA512

15a1a356eb41e2a9df67b6ad5139f0ced542cae50900af091036ded1fa6327895f901df5116366fd3c0d38a3adc6f01a7b1aad3e6ae16c5d3b9a4305c4b0d145
SSDEEP

3072:StNB40PrptIKml2baxTKAI2XWjOPBoIIz/9pybO9yf4Z1LbewDpTb:StM0P9tT22qKwXWjceX6bO9y2iwB

Score

10^/10

smokeloader backdoor discovery trojan

Malware Config

Targets

- Target
  
  bd05f805a5d224f1b73f1cba33438777abe441c3c625109a5d3342be6e684b20.exe
- Size
  
  230KB
- MD5
  
  ce8a71360c7571d605225cfe72938290
- SHA1
  
  cef429bd50198b60ccc172dcec24db3bec543b2a
- SHA256
  
  bd05f805a5d224f1b73f1cba33438777abe441c3c625109a5d3342be6e684b20
- SHA512
  
  15a1a356eb41e2a9df67b6ad5139f0ced542cae50900af091036ded1fa6327895f901df5116366fd3c0d38a3adc6f01a7b1aad3e6ae16c5d3b9a4305c4b0d145
- SSDEEP
  
  3072:StNB40PrptIKml2baxTKAI2XWjOPBoIIz/9pybO9yf4Z1LbewDpTb:StM0P9tT22qKwXWjceX6bO9y2iwB
Score

10^/10

smokeloader backdoor discovery trojan
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
- Smokeloader family
  smokeloader
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

smokeloaderbackdoordiscoverytrojan

behavioral2

smokeloaderbackdoordiscoverytrojan