Overview

overview

10

Static

static

file.exe

windows7-x64

10

file.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    file.exe

  • Size

    205KB

  • Sample

    230115-cqpq1scf2x

  • MD5

    684417f83a3ecdf6740afb52a26706d4

  • SHA1

    95eea1d76dcefcf77f5e3777a75ab2d9cfb54e2f

  • SHA256

    e4ecd5ab7f125920e3b5d2a5f8e837abbb891211ae34144dfef061e23a1c23d1

  • SHA512

    32db28d8cf3ad8efab972be7921d9815104831a56f2152fe347d21c76f80e392c8fe1763f0c3a50cb6d2db00757ddf31bb20b399c9d268ab42ad513096b547d4

  • SSDEEP

    3072:kX9roVcieScdkZX5I2IoH9cR3F5o2OpCAVHxm7z99apb:g2cieSHZO7oGZF57OMoI7z9Ip

Score
10/10
smokeloaderbackdoortrojan

Malware Config

Targets

    • Target

      file.exe

    • Size

      205KB

    • MD5

      684417f83a3ecdf6740afb52a26706d4

    • SHA1

      95eea1d76dcefcf77f5e3777a75ab2d9cfb54e2f

    • SHA256

      e4ecd5ab7f125920e3b5d2a5f8e837abbb891211ae34144dfef061e23a1c23d1

    • SHA512

      32db28d8cf3ad8efab972be7921d9815104831a56f2152fe347d21c76f80e392c8fe1763f0c3a50cb6d2db00757ddf31bb20b399c9d268ab42ad513096b547d4

    • SSDEEP

      3072:kX9roVcieScdkZX5I2IoH9cR3F5o2OpCAVHxm7z99apb:g2cieSHZO7oGZF57OMoI7z9Ip

    Score
    10/10
    smokeloaderbackdoortrojan

    • Detects Smokeloader packer

    • SmokeLoader

      Modular backdoor trojan in use since 2014.

      trojanbackdoorsmokeloader

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks