General

  • Target

    320283e3b3c3c0023b85a86a8dbb0d825a6bf2f8ff7b96f7b5d87ddbbca9e16a

  • Size

    186KB

  • Sample

    221123-hw1y5aee63

  • MD5

    47b560385da3404a0a1cefaacded2fc8

  • SHA1

    181fba4c06a49641de2e7b6be131b455fcec1c4f

  • SHA256

    320283e3b3c3c0023b85a86a8dbb0d825a6bf2f8ff7b96f7b5d87ddbbca9e16a

  • SHA512

    53a51b4b2c88519ac95a93489372da3cf99474893f3d0a334a151b2591c889d7585cf29de299ab3a721949626ba094932210e713651bba2e9239e6ae2925a3ee

  • SSDEEP

    3072:mBIE8ENAomdLh1RBW6mD5JoElhQ7ZnBu1510v+fFqz9ao:1ETHaLh1RB5fno1Vqco

Malware Config

Targets

    • Target

      320283e3b3c3c0023b85a86a8dbb0d825a6bf2f8ff7b96f7b5d87ddbbca9e16a

    • Size

      186KB

    • MD5

      47b560385da3404a0a1cefaacded2fc8

    • SHA1

      181fba4c06a49641de2e7b6be131b455fcec1c4f

    • SHA256

      320283e3b3c3c0023b85a86a8dbb0d825a6bf2f8ff7b96f7b5d87ddbbca9e16a

    • SHA512

      53a51b4b2c88519ac95a93489372da3cf99474893f3d0a334a151b2591c889d7585cf29de299ab3a721949626ba094932210e713651bba2e9239e6ae2925a3ee

    • SSDEEP

      3072:mBIE8ENAomdLh1RBW6mD5JoElhQ7ZnBu1510v+fFqz9ao:1ETHaLh1RB5fno1Vqco

    • Detects Smokeloader packer

    • SmokeLoader

      Modular backdoor trojan in use since 2014.

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v6

Tasks