Overview

overview

10

Static

static

61a848db00...d9.exe

windows7-x64

10

61a848db00...d9.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    61a848db004ffcce17979f37f7f09dd9.exe

  • Size

    206KB

  • Sample

    220910-czqdxadbgp

  • MD5

    61a848db004ffcce17979f37f7f09dd9

  • SHA1

    4b6c1b380307ab1d2cb7e8881143b0c06eb31e00

  • SHA256

    6931ec7393c98437b7b2a11175b1c7e8d9c1c22dbc0227d9b1644d31899dfd76

  • SHA512

    06b69a025991ea9df928521359d2c5dc703256f85de08928535aebefe5e6aaf07fa4e88b81a18fb706d3227823d878f8bfaaec95aca20c15e5f6007e9ff75506

  • SSDEEP

    3072:5S5dWq5L8FgFT7p52R/Aja85wC3vSOCwiSz8mpCrLhi:IV5L8aFTh5wJ7wia8msrLk

Score
10/10
smokeloaderbackdoortrojan

Malware Config

Targets

    • Target

      61a848db004ffcce17979f37f7f09dd9.exe

    • Size

      206KB

    • MD5

      61a848db004ffcce17979f37f7f09dd9

    • SHA1

      4b6c1b380307ab1d2cb7e8881143b0c06eb31e00

    • SHA256

      6931ec7393c98437b7b2a11175b1c7e8d9c1c22dbc0227d9b1644d31899dfd76

    • SHA512

      06b69a025991ea9df928521359d2c5dc703256f85de08928535aebefe5e6aaf07fa4e88b81a18fb706d3227823d878f8bfaaec95aca20c15e5f6007e9ff75506

    • SSDEEP

      3072:5S5dWq5L8FgFT7p52R/Aja85wC3vSOCwiSz8mpCrLhi:IV5L8aFTh5wJ7wia8msrLk

    Score
    10/10
    smokeloaderbackdoortrojan

    • Detects Smokeloader packer

    • SmokeLoader

      Modular backdoor trojan in use since 2014.

      trojanbackdoorsmokeloader

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks