Overview

overview

10

Static

static

1

file.exe

windows7-x64

10

file.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    file.exe

  • Size

    189KB

  • Sample

    230213-qv874sde33

  • MD5

    c1af8ff36551ef71a0f2f0568910f0e0

  • SHA1

    06bd401c2e634c7e02720270b2ee0406a4c0d4ca

  • SHA256

    81e3af79ce1210e976019e4cec7dcb494fe416d3518c9c3feffe1a96b5fefeea

  • SHA512

    092ccd5d7ac7b24ae0a6f2cd4300a6985663db066f45bf108b96469401dd29b6a35fa3c8c710d85263987bf03a5ca245fbdea615ea51b0ddcf9ed5d444a2d781

  • SSDEEP

    3072:dn9T6Xodo5TymXo1aPKxrWuKlYqgYjpI1qtPIoceXjftjfY8yCfpL3PC:dnx6YOHXo1aSxrObtm1tejFfYLw

Score
10/10
smokeloaderbackdoortrojan

Malware Config

Targets

    • Target

      file.exe

    • Size

      189KB

    • MD5

      c1af8ff36551ef71a0f2f0568910f0e0

    • SHA1

      06bd401c2e634c7e02720270b2ee0406a4c0d4ca

    • SHA256

      81e3af79ce1210e976019e4cec7dcb494fe416d3518c9c3feffe1a96b5fefeea

    • SHA512

      092ccd5d7ac7b24ae0a6f2cd4300a6985663db066f45bf108b96469401dd29b6a35fa3c8c710d85263987bf03a5ca245fbdea615ea51b0ddcf9ed5d444a2d781

    • SSDEEP

      3072:dn9T6Xodo5TymXo1aPKxrWuKlYqgYjpI1qtPIoceXjftjfY8yCfpL3PC:dnx6YOHXo1aSxrObtm1tejFfYLw

    Score
    10/10
    smokeloaderbackdoortrojan

    • Detects Smokeloader packer

    • SmokeLoader

      Modular backdoor trojan in use since 2014.

      trojanbackdoorsmokeloader

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks