5b58a4c198f94907a60f77787a963f1b[.]exe | Triage

Submit
Reports

Overview

overview

Static

static

1

5b58a4c198...1b.exe

windows7-x64

5b58a4c198...1b.exe

windows10-2004-x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

5b58a4c198f94907a60f77787a963f1b.exe

Resource

win7-20230220-en

smokeloader swo backdoor trojan

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

5b58a4c198f94907a60f77787a963f1b.exe

Resource

win10v2004-20230221-en

smokeloader swo backdoor trojan

windows10-2004-x64

10 signatures

150 seconds

General

Target

5b58a4c198f94907a60f77787a963f1b.exe
Size

473KB
MD5

5b58a4c198f94907a60f77787a963f1b
SHA1

37c8f9833f016d6c0e524a5c93182d169687b50b
SHA256

e932678b9ee22be9849068e70431df90310f66c57fa293b07e93015d02a9e972
SHA512

20f062105b887da74365e4055eabec1b2fb21d21004904c69cf97482790ad357726405815cf08ab9aef4b6083bc2f213d2652d0dfa94baaea00bf47401a0ce78
SSDEEP

6144:py5xFJtEj9EyfJlxsH98HVXLxOPae3f9x24qyS0fK+U1I4Y:pyPaZ/xsHGVboPaQf9x24qy7KDi

Score

1^/10

Malware Config

Signatures

Files

5b58a4c198f94907a60f77787a963f1b.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 469KB - Virtual size: 469KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy