General
-
Target
6e84c127463808d6cfc4b3f5aa6cfb3cd523398b7be1154b0cef9054aee344dd
-
Size
223KB
-
Sample
230329-cnpm8sed53
-
MD5
cf5ff086a90dfe58e1a7e37c4a08c793
-
SHA1
832b1e6183bddbda406b540a7881c2b24b47c72c
-
SHA256
6e84c127463808d6cfc4b3f5aa6cfb3cd523398b7be1154b0cef9054aee344dd
-
SHA512
3c67dfa07aaaf1de5f08b68b2f06dd5340e61d5fe24ae0af58b17b1269b2b154711672400c074c9696cf6dfb437841cf51e89288c47265a5fe61f44bb14a1717
-
SSDEEP
3072:mXjdnwJKHdF08owlTZtyzsYM0jymFLp+1us8duEuNygY:YNvQ8P3OO1ustEu
Static task
static1
Behavioral task
behavioral1
Sample
6e84c127463808d6cfc4b3f5aa6cfb3cd523398b7be1154b0cef9054aee344dd.exe
Resource
win10-20230220-en
Malware Config
Extracted
smokeloader
lab
Extracted
smokeloader
2020
http://host-file-host6.com/
http://host-host-file8.com/
Targets
-
-
Target
6e84c127463808d6cfc4b3f5aa6cfb3cd523398b7be1154b0cef9054aee344dd
-
Size
223KB
-
MD5
cf5ff086a90dfe58e1a7e37c4a08c793
-
SHA1
832b1e6183bddbda406b540a7881c2b24b47c72c
-
SHA256
6e84c127463808d6cfc4b3f5aa6cfb3cd523398b7be1154b0cef9054aee344dd
-
SHA512
3c67dfa07aaaf1de5f08b68b2f06dd5340e61d5fe24ae0af58b17b1269b2b154711672400c074c9696cf6dfb437841cf51e89288c47265a5fe61f44bb14a1717
-
SSDEEP
3072:mXjdnwJKHdF08owlTZtyzsYM0jymFLp+1us8duEuNygY:YNvQ8P3OO1ustEu
Score10/10-
Deletes itself
-
Suspicious use of SetThreadContext
-