General
-
Target
file.exe
-
Size
296KB
-
Sample
230328-wyq4laeb3w
-
MD5
fa32b4820a9d08b3c695fefda4aa7c26
-
SHA1
fdcc844fbc60643047ba201a1c54eb2003327b1a
-
SHA256
8f2a26bfa721f95ef9b492179b6eef76c68123984649bf083922e2cc33020b16
-
SHA512
e348e601ac5b5399314214fbe873e02dc080797d8048336f762f717fdb7ffb5962a3debe566add5ece94fa2ed03e20ca5805fed6e8a7cf9185a2a1f8cb31a074
-
SSDEEP
3072:8GQZrYEPYb2SWSpmBzeyMD9TDZMmyrfMBZnRmuy21hKLdU0ZTIWvQfu:jUNYb2gmBE/yrEDryJdU0M
Static task
static1
Behavioral task
behavioral1
Sample
file.exe
Resource
win7-20230220-en
Behavioral task
behavioral2
Sample
file.exe
Resource
win10v2004-20230221-en
Malware Config
Extracted
smokeloader
lab
Extracted
smokeloader
2020
http://host-file-host6.com/
http://host-host-file8.com/
Targets
-
-
Target
file.exe
-
Size
296KB
-
MD5
fa32b4820a9d08b3c695fefda4aa7c26
-
SHA1
fdcc844fbc60643047ba201a1c54eb2003327b1a
-
SHA256
8f2a26bfa721f95ef9b492179b6eef76c68123984649bf083922e2cc33020b16
-
SHA512
e348e601ac5b5399314214fbe873e02dc080797d8048336f762f717fdb7ffb5962a3debe566add5ece94fa2ed03e20ca5805fed6e8a7cf9185a2a1f8cb31a074
-
SSDEEP
3072:8GQZrYEPYb2SWSpmBzeyMD9TDZMmyrfMBZnRmuy21hKLdU0ZTIWvQfu:jUNYb2gmBE/yrEDryJdU0M
Score10/10-
Suspicious use of SetThreadContext
-