General

  • Target

    08a096f2655915b482af973bf4bc5f3beab2582928268374402741ec4c570ebf

  • Size

    210KB

  • Sample

    221031-2rzeaaeggm

  • MD5

    49313bda2d2745c2f2b4544e790fc54f

  • SHA1

    1350e9429e8b7e7fc1e53360ae4cf67fcafa62c4

  • SHA256

    08a096f2655915b482af973bf4bc5f3beab2582928268374402741ec4c570ebf

  • SHA512

    4525334367c1bd4bfce14428001c1272fd0a4aea2ee354ce24438209732f63de5689843ac72ecf3c5a5c5c17185ea28fa7f463a6db9687d98a9a66af89f265d2

  • SSDEEP

    3072:aqnTEVu60SoOVHtGS6LeUv6nf5nNhu1Nkn2inj5cPszx:aqTG0rOHp6LeUvdanT9zz

Malware Config

Targets

    • Target

      08a096f2655915b482af973bf4bc5f3beab2582928268374402741ec4c570ebf

    • Size

      210KB

    • MD5

      49313bda2d2745c2f2b4544e790fc54f

    • SHA1

      1350e9429e8b7e7fc1e53360ae4cf67fcafa62c4

    • SHA256

      08a096f2655915b482af973bf4bc5f3beab2582928268374402741ec4c570ebf

    • SHA512

      4525334367c1bd4bfce14428001c1272fd0a4aea2ee354ce24438209732f63de5689843ac72ecf3c5a5c5c17185ea28fa7f463a6db9687d98a9a66af89f265d2

    • SSDEEP

      3072:aqnTEVu60SoOVHtGS6LeUv6nf5nNhu1Nkn2inj5cPszx:aqTG0rOHp6LeUvdanT9zz

    • Detects Smokeloader packer

    • SmokeLoader

      Modular backdoor trojan in use since 2014.

    • Deletes itself

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v6

Tasks