Overview

overview

10

Static

static

file.exe

windows7-x64

10

file.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    file.exe

  • Size

    229KB

  • Sample

    221228-sra71saf92

  • MD5

    02b993e22666bccf10c35e59ef2f6d9b

  • SHA1

    64c141795f0e8d95913cfb62c287c12f633ef5bd

  • SHA256

    59dea777a4e3bff56d952b9f506616bd5e15e50b8a78208c2a6af9059672de2f

  • SHA512

    ed1def95e4e56fdda6f8ac51ea5eb46db0eb832ca3c111ed8d9cd47fd86a1014a1d137b24e5cc4e0e6c88eaeecb83c98a988a39511b5d7d3333dd6a010748598

  • SSDEEP

    3072:q4zsLSyuS5Wc9NwLfbyzysnmgN1csforvRfkAgdxviwD3tdmdhEH:ELVgecjshpgzOxvii3tm

Score
10/10
smokeloaderbackdoortrojan

Malware Config

Targets

    • Target

      file.exe

    • Size

      229KB

    • MD5

      02b993e22666bccf10c35e59ef2f6d9b

    • SHA1

      64c141795f0e8d95913cfb62c287c12f633ef5bd

    • SHA256

      59dea777a4e3bff56d952b9f506616bd5e15e50b8a78208c2a6af9059672de2f

    • SHA512

      ed1def95e4e56fdda6f8ac51ea5eb46db0eb832ca3c111ed8d9cd47fd86a1014a1d137b24e5cc4e0e6c88eaeecb83c98a988a39511b5d7d3333dd6a010748598

    • SSDEEP

      3072:q4zsLSyuS5Wc9NwLfbyzysnmgN1csforvRfkAgdxviwD3tdmdhEH:ELVgecjshpgzOxvii3tm

    Score
    10/10
    smokeloaderbackdoortrojan

    • Detects Smokeloader packer

    • SmokeLoader

      Modular backdoor trojan in use since 2014.

      trojanbackdoorsmokeloader

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks