Overview

overview

10

Static

static

1

file.exe

windows7-x64

10

file.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    file

  • Size

    357KB

  • Sample

    230210-s77adsgg97

  • MD5

    82e5e875fbc9dd37c4d355fb140994ff

  • SHA1

    0eb473e11c318da9cc6e44c0347d68543a08beaf

  • SHA256

    4df4569a89e92e0aa8656df8c5ed7a9a77ddb45762adbf88b37d12c02212618f

  • SHA512

    0a1ea6aa9bcb86394fac5885a16eb8930b68b4c37b629b6369001b81a68ee0bf2421aba095c696ad3e570fdf62106055893e0c3718a93c43f57218e2ee1de93c

  • SSDEEP

    3072:D98+b5+xJauajZRObQZooq+AkeTOOVkyri3QYUCOlDhrbNNfINe709nf6N8LC2UU:J6PvajGbA9dTOCcYUflFBNQvnfW8LC

Score
10/10
smokeloaderbackdoortrojan

Malware Config

Targets

    • Target

      file

    • Size

      357KB

    • MD5

      82e5e875fbc9dd37c4d355fb140994ff

    • SHA1

      0eb473e11c318da9cc6e44c0347d68543a08beaf

    • SHA256

      4df4569a89e92e0aa8656df8c5ed7a9a77ddb45762adbf88b37d12c02212618f

    • SHA512

      0a1ea6aa9bcb86394fac5885a16eb8930b68b4c37b629b6369001b81a68ee0bf2421aba095c696ad3e570fdf62106055893e0c3718a93c43f57218e2ee1de93c

    • SSDEEP

      3072:D98+b5+xJauajZRObQZooq+AkeTOOVkyri3QYUCOlDhrbNNfINe709nf6N8LC2UU:J6PvajGbA9dTOCcYUflFBNQvnfW8LC

    Score
    10/10
    smokeloaderbackdoortrojan

    • Detects Smokeloader packer

    • SmokeLoader

      Modular backdoor trojan in use since 2014.

      trojanbackdoorsmokeloader

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks