Overview

overview

10

Static

static

1

file.exe

windows7-x64

10

file.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    file.exe

  • Size

    252KB

  • Sample

    230216-15mrzaca2x

  • MD5

    c766fc09320bd2e7eacd48de6d300a73

  • SHA1

    1abc0372b16a3477caf917d43344c323793bc0b0

  • SHA256

    83c09e424a194ba6169087edba6c1f79d9288422396844a45bbd3c72a9e615ea

  • SHA512

    7630db7ca5d8c7928c6e6922f4bc0de604988d95f5818edad4b24a67f6bf86486fae72d23bde25cf18d16978270821898c37566a31546a0c1b66b27a6ef9db0b

  • SSDEEP

    3072:VtxqLd5U5u6PfAE0DQrg17UKTR9TxS2GCKouKMDHJtHPVbZUcNYE:bcLAuJE0wg1UKTXTA2Yo6/HuE

Score
10/10
smokeloaderbackdoortrojan

Malware Config

Targets

    • Target

      file.exe

    • Size

      252KB

    • MD5

      c766fc09320bd2e7eacd48de6d300a73

    • SHA1

      1abc0372b16a3477caf917d43344c323793bc0b0

    • SHA256

      83c09e424a194ba6169087edba6c1f79d9288422396844a45bbd3c72a9e615ea

    • SHA512

      7630db7ca5d8c7928c6e6922f4bc0de604988d95f5818edad4b24a67f6bf86486fae72d23bde25cf18d16978270821898c37566a31546a0c1b66b27a6ef9db0b

    • SSDEEP

      3072:VtxqLd5U5u6PfAE0DQrg17UKTR9TxS2GCKouKMDHJtHPVbZUcNYE:bcLAuJE0wg1UKTXTA2Yo6/HuE

    Score
    10/10
    smokeloaderbackdoortrojan

    • Detects Smokeloader packer

    • SmokeLoader

      Modular backdoor trojan in use since 2014.

      trojanbackdoorsmokeloader

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks