Overview

overview

10

Static

static

file.exe

windows7-x64

10

file.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    file.exe

  • Size

    327KB

  • Sample

    230111-jqd3vabe65

  • MD5

    cfa16d5a3c84c4e69e2bfe5c54fe2845

  • SHA1

    0110c4e94dcae3978b0c5cb1985aea36e13c4548

  • SHA256

    75b7829607ad1d52fe51418f8445c49cd976f65c8ddef2b6587b3f02ac6d63aa

  • SHA512

    34982482fc8066fb5382f028150343419ed3b0ff4838cfe8149d6623c02005ccd4bacc06db0726e31ef4ef13b49e1d4b716cc675a2a5004fc013c3473a27a855

  • SSDEEP

    3072:kX3Xcvh2dX5tA5VCflEqL00wwCDH5UtLcTO5yyDqVkFxDPkeyH4C9KEc:gHY2TtMglE/0O5UtL75yyDqCFZG9

Score
10/10
smokeloaderbackdoortrojan

Malware Config

Targets

    • Target

      file.exe

    • Size

      327KB

    • MD5

      cfa16d5a3c84c4e69e2bfe5c54fe2845

    • SHA1

      0110c4e94dcae3978b0c5cb1985aea36e13c4548

    • SHA256

      75b7829607ad1d52fe51418f8445c49cd976f65c8ddef2b6587b3f02ac6d63aa

    • SHA512

      34982482fc8066fb5382f028150343419ed3b0ff4838cfe8149d6623c02005ccd4bacc06db0726e31ef4ef13b49e1d4b716cc675a2a5004fc013c3473a27a855

    • SSDEEP

      3072:kX3Xcvh2dX5tA5VCflEqL00wwCDH5UtLcTO5yyDqVkFxDPkeyH4C9KEc:gHY2TtMglE/0O5UtL75yyDqCFZG9

    Score
    10/10
    smokeloaderbackdoortrojan

    • Detects Smokeloader packer

    • SmokeLoader

      Modular backdoor trojan in use since 2014.

      trojanbackdoorsmokeloader

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks