Overview

overview

10

Static

static

79c3f4b5a5...bf.exe

windows7-x64

10

79c3f4b5a5...bf.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    79c3f4b5a5c40b63229af8843211592306d997ac9681df7915eab26cbf8e87bf.exe

  • Size

    302KB

  • Sample

    221222-bl1r2sgh2y

  • MD5

    7519aa3d568ad297c3e4a2f8b152103a

  • SHA1

    b7b153b90e1abfc6134e21b8c49cb8baecc708a3

  • SHA256

    79c3f4b5a5c40b63229af8843211592306d997ac9681df7915eab26cbf8e87bf

  • SHA512

    d37d301f47a1711014f0f2333d576dd1dd077fc290bdd8ec541f05a8f05586098e9ac0cea7d84725e7a1248202dd6cb3e1226ee33acd2fe2e65935a0c39d89ef

  • SSDEEP

    6144:HDLFKub1rhFjgA42rJF1JTG0z+3ng+E49HwchLP3i:HDxKuBv0871JJwnVZH9P3

Score
10/10
smokeloaderbackdoortrojan

Malware Config

Targets

    • Target

      79c3f4b5a5c40b63229af8843211592306d997ac9681df7915eab26cbf8e87bf.exe

    • Size

      302KB

    • MD5

      7519aa3d568ad297c3e4a2f8b152103a

    • SHA1

      b7b153b90e1abfc6134e21b8c49cb8baecc708a3

    • SHA256

      79c3f4b5a5c40b63229af8843211592306d997ac9681df7915eab26cbf8e87bf

    • SHA512

      d37d301f47a1711014f0f2333d576dd1dd077fc290bdd8ec541f05a8f05586098e9ac0cea7d84725e7a1248202dd6cb3e1226ee33acd2fe2e65935a0c39d89ef

    • SSDEEP

      6144:HDLFKub1rhFjgA42rJF1JTG0z+3ng+E49HwchLP3i:HDxKuBv0871JJwnVZH9P3

    Score
    10/10
    smokeloaderbackdoortrojan

    • Detects Smokeloader packer

    • SmokeLoader

      Modular backdoor trojan in use since 2014.

      trojanbackdoorsmokeloader

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks