Overview

overview

10

Static

static

6e43498b0c...95.exe

windows7-x64

10

6e43498b0c...95.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    6e43498b0c00513823bc30f866a0a55c2d187b1b2ef83cfbe8bc2065c9d95a95

  • Size

    137KB

  • Sample

    230103-bncg8sha69

  • MD5

    ddfb361b9fb2a0cc1706ea00198c1b37

  • SHA1

    6119dd8c240b813dc6ef353389a3ffcb8c4378b2

  • SHA256

    f3406076cecaaa82f1e406f899ed315bda0060caa4d8eac8ecc49d8d20d938dd

  • SHA512

    2bb94ac4ac15379850bac041acea14e06fa9bb09dcde8025ab012e9d199e69211c9e1c2deb4714ebff68d3aa35303f9a1b6e642353c8488227b1e401b3a9be9f

  • SSDEEP

    3072:unOl1l7Uk14v+UYzdTCzup7UrihwKtC88CbC5GywK7U07RSQT/:F3Ud+UECozhbtC8hEBwN0lLT/

Score
10/10
smokeloaderbackdoortrojan

Malware Config

Targets

    • Target

      6e43498b0c00513823bc30f866a0a55c2d187b1b2ef83cfbe8bc2065c9d95a95

    • Size

      215KB

    • MD5

      8f167e41b86d0b7e424fc734d9a33d68

    • SHA1

      fb44ccf8819673390e453cd0f91aaf1f800395b2

    • SHA256

      6e43498b0c00513823bc30f866a0a55c2d187b1b2ef83cfbe8bc2065c9d95a95

    • SHA512

      eeaba95454f593c552428ef8ef5b4eb5d77508d2d457e71c9a94b8b5e631bd712b3a31921c87676a699bab173a7051c6ff75f5db6ffe8138e2f4a24c5123278f

    • SSDEEP

      3072:nXMDIJI0L4PkPTf54ko9ebfyPrihwKtC88CbC5GxIds/HnpW6:X7JbL5Tmiy+hbtC8hEs/HB

    Score
    10/10
    smokeloaderbackdoortrojan

    • Detects Smokeloader packer

    • SmokeLoader

      Modular backdoor trojan in use since 2014.

      trojanbackdoorsmokeloader

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks