General
-
Target
4fbad19a6629f2dbbaa4bebd6066dbc1548b7ee3890226ca3d4b70e97d1dcacd
-
Size
296KB
-
Sample
230328-tjtj3abh56
-
MD5
6c0975817e255a00753d5bf3c48d67f8
-
SHA1
38c1825ea17a47b0a63a0592c395423bf20a427e
-
SHA256
4fbad19a6629f2dbbaa4bebd6066dbc1548b7ee3890226ca3d4b70e97d1dcacd
-
SHA512
2052624292424c1067bf32c935955ea8a0180159c04feb07d6da0b221dfb1a0d32739eaf0433e2f8c596cc03f8769cec5715ed5d5daa39966bfbd812f027407b
-
SSDEEP
3072:Cldy/5idB5Df4RJvLAIeMcAP4hhhhhhQ0ewt+BjsbMxA1kCtjjs0uZIGbp9XAFle:GSc5DfcvLq6sYwjs0Gbp57tDDT9
Static task
static1
Behavioral task
behavioral1
Sample
4fbad19a6629f2dbbaa4bebd6066dbc1548b7ee3890226ca3d4b70e97d1dcacd.exe
Resource
win10v2004-20230221-en
Malware Config
Extracted
smokeloader
lab
Extracted
smokeloader
2020
http://host-file-host6.com/
http://host-host-file8.com/
Targets
-
-
Target
4fbad19a6629f2dbbaa4bebd6066dbc1548b7ee3890226ca3d4b70e97d1dcacd
-
Size
296KB
-
MD5
6c0975817e255a00753d5bf3c48d67f8
-
SHA1
38c1825ea17a47b0a63a0592c395423bf20a427e
-
SHA256
4fbad19a6629f2dbbaa4bebd6066dbc1548b7ee3890226ca3d4b70e97d1dcacd
-
SHA512
2052624292424c1067bf32c935955ea8a0180159c04feb07d6da0b221dfb1a0d32739eaf0433e2f8c596cc03f8769cec5715ed5d5daa39966bfbd812f027407b
-
SSDEEP
3072:Cldy/5idB5Df4RJvLAIeMcAP4hhhhhhQ0ewt+BjsbMxA1kCtjjs0uZIGbp9XAFle:GSc5DfcvLq6sYwjs0Gbp57tDDT9
Score10/10-
Suspicious use of SetThreadContext
-