General
-
Target
ebaf378300359d6342401cbe361a9759d33bb40b38358b659d1bef961ade79be
-
Size
333KB
-
Sample
220126-whs81sgbaq
-
MD5
37c193001ff6d80502e257e132b93fb6
-
SHA1
279cc8a20c6944190c981faa4a017f7652030a7c
-
SHA256
ebaf378300359d6342401cbe361a9759d33bb40b38358b659d1bef961ade79be
-
SHA512
abb3322747c0ceb0324ff7679c5fb8ceb973100b259771e601f450dd7f2c5a77de7c8cbdfa77cf09a58b793f2601a91e79975513167f6943ed801a7c82ca6e90
Static task
static1
Behavioral task
behavioral1
Sample
ebaf378300359d6342401cbe361a9759d33bb40b38358b659d1bef961ade79be.exe
Resource
win10v2004-en-20220112
Malware Config
Extracted
smokeloader
2020
http://host-data-coin-11.com/
http://file-coin-host-12.com/
Targets
-
-
Target
ebaf378300359d6342401cbe361a9759d33bb40b38358b659d1bef961ade79be
-
Size
333KB
-
MD5
37c193001ff6d80502e257e132b93fb6
-
SHA1
279cc8a20c6944190c981faa4a017f7652030a7c
-
SHA256
ebaf378300359d6342401cbe361a9759d33bb40b38358b659d1bef961ade79be
-
SHA512
abb3322747c0ceb0324ff7679c5fb8ceb973100b259771e601f450dd7f2c5a77de7c8cbdfa77cf09a58b793f2601a91e79975513167f6943ed801a7c82ca6e90
Score10/10-
Sets service image path in registry
-
Suspicious use of SetThreadContext
-