General
-
Target
file.exe
-
Size
295KB
-
Sample
230328-pp2emsba36
-
MD5
8e2aa331b5a83da49e8ad2a5ebfe16ef
-
SHA1
f660843b6bd05f25fe28ef6f8223a38d5e5d7527
-
SHA256
17dcd596f892d31a220fba0fa1752b2442397d4aaec547a672d36fb1e533293d
-
SHA512
1abd604949e6e5a52de0b8ae18b3a0d7d59875b83fb7f7faef7719658c3d52a16706e0c199867929ed6cc290c0c8bc70758c2f4fa838129f0f6989e6b891658c
-
SSDEEP
3072:1l88VLE8LwYJejxRF3hh9Ion6xPVC2X3S8qas035phZO0mklmc2toiDTNg:P3ECrej93h0ZSO/6tDDTO
Static task
static1
Behavioral task
behavioral1
Sample
file.exe
Resource
win7-20230220-en
Behavioral task
behavioral2
Sample
file.exe
Resource
win10v2004-20230220-en
Malware Config
Extracted
smokeloader
lab
Extracted
smokeloader
2020
http://host-file-host6.com/
http://host-host-file8.com/
Targets
-
-
Target
file.exe
-
Size
295KB
-
MD5
8e2aa331b5a83da49e8ad2a5ebfe16ef
-
SHA1
f660843b6bd05f25fe28ef6f8223a38d5e5d7527
-
SHA256
17dcd596f892d31a220fba0fa1752b2442397d4aaec547a672d36fb1e533293d
-
SHA512
1abd604949e6e5a52de0b8ae18b3a0d7d59875b83fb7f7faef7719658c3d52a16706e0c199867929ed6cc290c0c8bc70758c2f4fa838129f0f6989e6b891658c
-
SSDEEP
3072:1l88VLE8LwYJejxRF3hh9Ion6xPVC2X3S8qas035phZO0mklmc2toiDTNg:P3ECrej93h0ZSO/6tDDTO
Score10/10-
Suspicious use of SetThreadContext
-