General
-
Target
bfc45c7920cd98543aebbd4d2419540f33352ac9cb7dd8c4ff5cf4d77d6efea1
-
Size
332KB
-
Sample
220126-mhm8bscbg4
-
MD5
18b755821bf0ededdb63e5201cb9f262
-
SHA1
1e202e8de7745dc6bba05479927cd361828ef253
-
SHA256
bfc45c7920cd98543aebbd4d2419540f33352ac9cb7dd8c4ff5cf4d77d6efea1
-
SHA512
8dcc01ff82b78f34df983d75740110b71504fd7b8918430087c7ffa1a373228499d34a43de6b738885abe7c7081778e6030e26d603b43bd8e3822f73694348a2
Malware Config
Extracted
smokeloader
2020
https://oakland-studio.video/search.php
https://seattle-university.video/search.php
Targets
-
-
Target
bfc45c7920cd98543aebbd4d2419540f33352ac9cb7dd8c4ff5cf4d77d6efea1
-
Size
332KB
-
MD5
18b755821bf0ededdb63e5201cb9f262
-
SHA1
1e202e8de7745dc6bba05479927cd361828ef253
-
SHA256
bfc45c7920cd98543aebbd4d2419540f33352ac9cb7dd8c4ff5cf4d77d6efea1
-
SHA512
8dcc01ff82b78f34df983d75740110b71504fd7b8918430087c7ffa1a373228499d34a43de6b738885abe7c7081778e6030e26d603b43bd8e3822f73694348a2
Score10/10-
SmokeLoader
Modular backdoor trojan in use since 2014.
-
Modifies Windows Firewall
-
Deletes itself
-
Accesses Microsoft Outlook profiles
-