Overview

overview

10

Static

static

1

file.exe

windows7-x64

10

file.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    file.exe

  • Size

    322KB

  • Sample

    230208-3st2maaf6y

  • MD5

    358ffac1e5efd1f546159967f61deb43

  • SHA1

    7033914e678325a53734bdab61b0dec0cd1db798

  • SHA256

    3d10b461229396493d0c7e2877360f66e41e11dbc201a11e382ac3f19c10d4fc

  • SHA512

    93bb827a6b76982718b538333a5e688851805e87061b94a1d0d1d50ed1a1d2194373db295551658a7fd0df78ee27f8173b70042b805985e700397681123f916b

  • SSDEEP

    3072:DPEWnDGSPRdjjW7+QdoFn4L0BoeaqC98RqgCQENe+pGSMjK7MfQt7fz3:DMWyEjjWddoFcOoeRC9LJQkeQGS/

Score
10/10
smokeloaderbackdoortrojan

Malware Config

Targets

    • Target

      file.exe

    • Size

      322KB

    • MD5

      358ffac1e5efd1f546159967f61deb43

    • SHA1

      7033914e678325a53734bdab61b0dec0cd1db798

    • SHA256

      3d10b461229396493d0c7e2877360f66e41e11dbc201a11e382ac3f19c10d4fc

    • SHA512

      93bb827a6b76982718b538333a5e688851805e87061b94a1d0d1d50ed1a1d2194373db295551658a7fd0df78ee27f8173b70042b805985e700397681123f916b

    • SSDEEP

      3072:DPEWnDGSPRdjjW7+QdoFn4L0BoeaqC98RqgCQENe+pGSMjK7MfQt7fz3:DMWyEjjWddoFcOoeRC9LJQkeQGS/

    Score
    10/10
    smokeloaderbackdoortrojan

    • Detects Smokeloader packer

    • SmokeLoader

      Modular backdoor trojan in use since 2014.

      trojanbackdoorsmokeloader

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks