General
-
Target
55cbf86dbb5b1fe99a3502f383798cc15466454334df3bc4c3ffdfb95bc57c2f
-
Size
264KB
-
Sample
220125-tlvvxaaefk
-
MD5
2c9c93a67aa6cbcb5fec425b62556148
-
SHA1
cb981f95bb064332fb05c680bef4bac220e18a60
-
SHA256
55cbf86dbb5b1fe99a3502f383798cc15466454334df3bc4c3ffdfb95bc57c2f
-
SHA512
cc53ab8fd382dd05310cebfa474a0125b7072a8043551e34698eee60ad63b651ae2f19179197ee9c97093c0ebf551706b032877c4ab55163153f53bdc74d9c3a
Static task
static1
Behavioral task
behavioral1
Sample
55cbf86dbb5b1fe99a3502f383798cc15466454334df3bc4c3ffdfb95bc57c2f.exe
Resource
win10v2004-en-20220112
Malware Config
Extracted
smokeloader
2020
http://host-data-coin-11.com/
http://file-coin-host-12.com/
Targets
-
-
Target
55cbf86dbb5b1fe99a3502f383798cc15466454334df3bc4c3ffdfb95bc57c2f
-
Size
264KB
-
MD5
2c9c93a67aa6cbcb5fec425b62556148
-
SHA1
cb981f95bb064332fb05c680bef4bac220e18a60
-
SHA256
55cbf86dbb5b1fe99a3502f383798cc15466454334df3bc4c3ffdfb95bc57c2f
-
SHA512
cc53ab8fd382dd05310cebfa474a0125b7072a8043551e34698eee60ad63b651ae2f19179197ee9c97093c0ebf551706b032877c4ab55163153f53bdc74d9c3a
Score10/10-
Executes dropped EXE
-
Sets service image path in registry
-
Suspicious use of SetThreadContext
-