Overview

overview

10

Static

static

file.exe

windows7-x64

10

file.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    file.exe

  • Size

    260KB

  • Sample

    230114-gr2jesee91

  • MD5

    b4435073c260224ed4211a3936b95c0f

  • SHA1

    7314ffae5a9ee32f09ae77b20af0c35b643db192

  • SHA256

    f71be3d9a11d45f48c96c8b482203503c4de2444fa9c7f541f6a42982c024592

  • SHA512

    99cac6772997d15083868ea431054f5d04a4f2473920fe467eaf1bd052c1c2d51f7207ae1131ea5216351d3554807cc17b335130d614951ab7371f81f86e2e08

  • SSDEEP

    3072:VXZKtAw05Ohxp8JefdsZe7EtuBcI+sxfapb8pBI8jwWRjoV:R7wNJWef0eQtcf+bpgpRjFE

Score
10/10
smokeloaderbackdoortrojan

Malware Config

Targets

    • Target

      file.exe

    • Size

      260KB

    • MD5

      b4435073c260224ed4211a3936b95c0f

    • SHA1

      7314ffae5a9ee32f09ae77b20af0c35b643db192

    • SHA256

      f71be3d9a11d45f48c96c8b482203503c4de2444fa9c7f541f6a42982c024592

    • SHA512

      99cac6772997d15083868ea431054f5d04a4f2473920fe467eaf1bd052c1c2d51f7207ae1131ea5216351d3554807cc17b335130d614951ab7371f81f86e2e08

    • SSDEEP

      3072:VXZKtAw05Ohxp8JefdsZe7EtuBcI+sxfapb8pBI8jwWRjoV:R7wNJWef0eQtcf+bpgpRjFE

    Score
    10/10
    smokeloaderbackdoortrojan

    • Detects Smokeloader packer

    • SmokeLoader

      Modular backdoor trojan in use since 2014.

      trojanbackdoorsmokeloader

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks