General
-
Target
b54f42b5b0d19670960eb10c6789968a30df7e8532519b32d5ef33bf155fc034exe_JC.exe
-
Size
252KB
-
Sample
231012-1nbndadh75
-
MD5
aa61de6ebd02482cd16996c6f42ba8ab
-
SHA1
dea6f794cf98f0084bf14916d956818169a36b76
-
SHA256
b54f42b5b0d19670960eb10c6789968a30df7e8532519b32d5ef33bf155fc034
-
SHA512
2c638be845bd245db502abee66de6eac9a96348f2e9f81e43bcf648e14caba3d2f075f4f25261ed1ae9ae542f268d36a6214bc08fec958b6eb9e6d8d42c952e3
-
SSDEEP
3072:ajHIbQtMJSCTEKvAw2P7bhICAgYGlA5XFAf0jDb+:aEEtMJNEYAw2TCgvcX2MD
Static task
static1
Behavioral task
behavioral1
Sample
b54f42b5b0d19670960eb10c6789968a30df7e8532519b32d5ef33bf155fc034exe_JC.exe
Resource
win7-20230831-en
Behavioral task
behavioral2
Sample
b54f42b5b0d19670960eb10c6789968a30df7e8532519b32d5ef33bf155fc034exe_JC.exe
Resource
win10v2004-20230915-en
Malware Config
Extracted
smokeloader
up3
Extracted
smokeloader
2020
http://host-file-host6.com/
http://host-host-file8.com/
Targets
-
-
Target
b54f42b5b0d19670960eb10c6789968a30df7e8532519b32d5ef33bf155fc034exe_JC.exe
-
Size
252KB
-
MD5
aa61de6ebd02482cd16996c6f42ba8ab
-
SHA1
dea6f794cf98f0084bf14916d956818169a36b76
-
SHA256
b54f42b5b0d19670960eb10c6789968a30df7e8532519b32d5ef33bf155fc034
-
SHA512
2c638be845bd245db502abee66de6eac9a96348f2e9f81e43bcf648e14caba3d2f075f4f25261ed1ae9ae542f268d36a6214bc08fec958b6eb9e6d8d42c952e3
-
SSDEEP
3072:ajHIbQtMJSCTEKvAw2P7bhICAgYGlA5XFAf0jDb+:aEEtMJNEYAw2TCgvcX2MD
Score10/10-
Deletes itself
-
Suspicious use of SetThreadContext
-