General
-
Target
b36ab72d6b927c1b1b4117f3c8a504e0eb69677baa0b7e255e01da9c6cf54cce
-
Size
109KB
-
Sample
220625-m99kmshgfj
-
MD5
be0e3fe57ca29de02232d44f0f9da982
-
SHA1
875d9b44490e5acef9f8d13d0f88a6c28b13bfd0
-
SHA256
b36ab72d6b927c1b1b4117f3c8a504e0eb69677baa0b7e255e01da9c6cf54cce
-
SHA512
1427f7387256d79d13f926e9cb4d2863666549f867827c7797900a83f015826f3c3bf32859b231b723067e0813ae9b5b846125f8f0bdb2d4924df387de50d346
Static task
static1
Behavioral task
behavioral1
Sample
b36ab72d6b927c1b1b4117f3c8a504e0eb69677baa0b7e255e01da9c6cf54cce.exe
Resource
win7-20220414-en
Behavioral task
behavioral2
Sample
b36ab72d6b927c1b1b4117f3c8a504e0eb69677baa0b7e255e01da9c6cf54cce.exe
Resource
win10v2004-20220414-en
Malware Config
Extracted
smokeloader
2018
http://ghjk78kjhb.net/
http://cleancleankkl.net/
http://dunujilis11r.net/
http://sulionuili1.in/
http://eseruuynli2.net/
http://nulikuliey.net/
http://oohdojssks9uf.net/
Targets
-
-
Target
b36ab72d6b927c1b1b4117f3c8a504e0eb69677baa0b7e255e01da9c6cf54cce
-
Size
109KB
-
MD5
be0e3fe57ca29de02232d44f0f9da982
-
SHA1
875d9b44490e5acef9f8d13d0f88a6c28b13bfd0
-
SHA256
b36ab72d6b927c1b1b4117f3c8a504e0eb69677baa0b7e255e01da9c6cf54cce
-
SHA512
1427f7387256d79d13f926e9cb4d2863666549f867827c7797900a83f015826f3c3bf32859b231b723067e0813ae9b5b846125f8f0bdb2d4924df387de50d346
Score10/10-
Maps connected drives based on registry
Disk information is often read in order to detect sandboxing environments.
-