General
-
Target
db7af89cb34f058907cee0f8b830d888e5589138c562db3b391fa61e74add004
-
Size
160KB
-
Sample
230925-hjce1acg9v
-
MD5
47c289b897a0504e1cd97363bc24eb69
-
SHA1
7afdee07b9385e1b778f8c89782c1c61e4998ffb
-
SHA256
7067d51c319a940a8f82de2634f494fb9e2346ce9a2407a650bb5afa0c28524f
-
SHA512
99758b45e4b0318d578fc5a514c9fe4cc50746676c419bb32cb86960ce141b51a0f4e573261269d188eb76e8ba39f9121cd6d108e8a1f7f9ed1eede1ba244aba
-
SSDEEP
3072:C+f+chS36BcaZ08uU7+q4Z7ZFzw0M+5xHdm/2uA+mOPZReF9o:Pf+4SKBcae8MqUj0ExHdm3A+mOPr
Static task
static1
Behavioral task
behavioral1
Sample
db7af89cb34f058907cee0f8b830d888e5589138c562db3b391fa61e74add004.exe
Resource
win7-20230831-en
Behavioral task
behavioral2
Sample
db7af89cb34f058907cee0f8b830d888e5589138c562db3b391fa61e74add004.exe
Resource
win10v2004-20230915-en
Malware Config
Extracted
smokeloader
2022
http://77.91.68.29/fks/
Targets
-
-
Target
db7af89cb34f058907cee0f8b830d888e5589138c562db3b391fa61e74add004
-
Size
270KB
-
MD5
4f3d155a8dd309a98f9ec662f3ac34f1
-
SHA1
4dcdf0ac10d100f4fba2d9da29fa13d9d818e9bf
-
SHA256
db7af89cb34f058907cee0f8b830d888e5589138c562db3b391fa61e74add004
-
SHA512
3271244f3db0ca714bf3df564fde0ab80f7f38fa2b083ac1d97eb08a34608b87bac4916c3bb4347a220fb98a150ad6376af6a74039f133148a654d4b6a231bc7
-
SSDEEP
6144:hRIhrJ+j+5j68KsT6h/OCy5U9uAO4A7DtfFdoqw6:hRuN+j+5+RsqGGuLPzw6
Score10/10-
Executes dropped EXE
-
Suspicious use of SetThreadContext
-