General
-
Target
2fca3f21df39b77f19f6aff9aa4249f8cea2380cbeedc3d98119d012a0a39907
-
Size
352KB
-
Sample
220128-n1x1xscaaj
-
MD5
68ac356f29229ca830ac9e763f9a26a4
-
SHA1
46afdad82d6eb6380913a04f2e6086104bcee58b
-
SHA256
2fca3f21df39b77f19f6aff9aa4249f8cea2380cbeedc3d98119d012a0a39907
-
SHA512
5be58a6feef8867af44a48c2c955b9e95de3bfd4d37c88ed630e4d613ceca88d0e92b49796699605a97fe74aaf8332d63c74424b24b31fc940ad06d5e8c1e77e
Static task
static1
Behavioral task
behavioral1
Sample
2fca3f21df39b77f19f6aff9aa4249f8cea2380cbeedc3d98119d012a0a39907.exe
Resource
win10-en-20211208
Malware Config
Extracted
smokeloader
2020
https://oakland-studio.video/search.php
https://seattle-university.video/search.php
Targets
-
-
Target
2fca3f21df39b77f19f6aff9aa4249f8cea2380cbeedc3d98119d012a0a39907
-
Size
352KB
-
MD5
68ac356f29229ca830ac9e763f9a26a4
-
SHA1
46afdad82d6eb6380913a04f2e6086104bcee58b
-
SHA256
2fca3f21df39b77f19f6aff9aa4249f8cea2380cbeedc3d98119d012a0a39907
-
SHA512
5be58a6feef8867af44a48c2c955b9e95de3bfd4d37c88ed630e4d613ceca88d0e92b49796699605a97fe74aaf8332d63c74424b24b31fc940ad06d5e8c1e77e
-
suricata: ET MALWARE Windows dir Microsoft Windows DOS prompt command exit OUTBOUND
suricata: ET MALWARE Windows dir Microsoft Windows DOS prompt command exit OUTBOUND
-
suricata: ET MALWARE Windows route Microsoft Windows DOS prompt command exit OUTBOUND
suricata: ET MALWARE Windows route Microsoft Windows DOS prompt command exit OUTBOUND
-
Modifies Windows Firewall
-
Deletes itself
-
Accesses Microsoft Outlook profiles
-