Overview

overview

10

Static

static

1

file.exe

windows7-x64

10

file.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    file.exe

  • Size

    180KB

  • Sample

    230212-1vgg7sgb8y

  • MD5

    0fbd624f1a4c263d6bf69cc3aecbbd0a

  • SHA1

    869223a42c31744c4834b797333a0ef4092ba2f5

  • SHA256

    d18e128b5e7f0d6a1d7e4b4c2c7daf8e2ee1768b2cf87e6495d7f596756e911a

  • SHA512

    4dfc1cb8025bf0d7e810bf1f39b3cf86041b3ae3c3c28d782fa33c236edd35bd593095ce88236b0e83196c1929dcb56a68389a57de4405812db1c8e42f4910d6

  • SSDEEP

    3072:1KSZkKi5Hvgj3Mm7Z8eXp0nFEEfwm47Fb9Jr9:HKbYj31WspfEfGr9

Score
10/10
smokeloaderbackdoortrojan

Malware Config

Targets

    • Target

      file.exe

    • Size

      180KB

    • MD5

      0fbd624f1a4c263d6bf69cc3aecbbd0a

    • SHA1

      869223a42c31744c4834b797333a0ef4092ba2f5

    • SHA256

      d18e128b5e7f0d6a1d7e4b4c2c7daf8e2ee1768b2cf87e6495d7f596756e911a

    • SHA512

      4dfc1cb8025bf0d7e810bf1f39b3cf86041b3ae3c3c28d782fa33c236edd35bd593095ce88236b0e83196c1929dcb56a68389a57de4405812db1c8e42f4910d6

    • SSDEEP

      3072:1KSZkKi5Hvgj3Mm7Z8eXp0nFEEfwm47Fb9Jr9:HKbYj31WspfEfGr9

    Score
    10/10
    smokeloaderbackdoortrojan

    • Detects Smokeloader packer

    • SmokeLoader

      Modular backdoor trojan in use since 2014.

      trojanbackdoorsmokeloader

    • Executes dropped EXE

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.