General
-
Target
7567f86def3dc8084c7109194fb9f6507fd2aa690750b0c686309977bd6d28bd
-
Size
305KB
-
Sample
220522-a1cs4aebh5
-
MD5
f31faec182e68366e6e95e2711f44f9f
-
SHA1
f8edb35e8f3dae879e27f47a0c0f18da265da9e8
-
SHA256
7567f86def3dc8084c7109194fb9f6507fd2aa690750b0c686309977bd6d28bd
-
SHA512
850d162c5b5bd06e50ffa14c29af84bcdd598a18dfd2ab3d4411fab6bf138e58720c3360d97efae03b9b613694de07c386b3385496b89a248051983cff0009b9
Static task
static1
Behavioral task
behavioral1
Sample
7567f86def3dc8084c7109194fb9f6507fd2aa690750b0c686309977bd6d28bd.exe
Resource
win10-20220414-en
Malware Config
Extracted
smokeloader
2020
https://ny-city-mall.com/search.php
https://fresh-cars.net/search.php
Targets
-
-
Target
7567f86def3dc8084c7109194fb9f6507fd2aa690750b0c686309977bd6d28bd
-
Size
305KB
-
MD5
f31faec182e68366e6e95e2711f44f9f
-
SHA1
f8edb35e8f3dae879e27f47a0c0f18da265da9e8
-
SHA256
7567f86def3dc8084c7109194fb9f6507fd2aa690750b0c686309977bd6d28bd
-
SHA512
850d162c5b5bd06e50ffa14c29af84bcdd598a18dfd2ab3d4411fab6bf138e58720c3360d97efae03b9b613694de07c386b3385496b89a248051983cff0009b9
-
suricata: ET MALWARE Windows dir Microsoft Windows DOS prompt command exit OUTBOUND
suricata: ET MALWARE Windows dir Microsoft Windows DOS prompt command exit OUTBOUND
-
suricata: ET MALWARE Windows route Microsoft Windows DOS prompt command exit OUTBOUND
suricata: ET MALWARE Windows route Microsoft Windows DOS prompt command exit OUTBOUND
-
Modifies Windows Firewall
-
Deletes itself
-
Accesses Microsoft Outlook profiles
-