General
-
Target
0ffab407dd3ebd93f007e24f439bbda8c8b68d50b5ba6537213608608c6f8d61exe_JC.exe
-
Size
272KB
-
Sample
231012-2b89jsfc99
-
MD5
a2b789e166d74ec2865e7a1c70233ef3
-
SHA1
d2c57c662861fb847c08045044b30473e7d0f334
-
SHA256
0ffab407dd3ebd93f007e24f439bbda8c8b68d50b5ba6537213608608c6f8d61
-
SHA512
b721b0aa220f9d85bb9ed7dc122a3e8c38a1c0e40ae8fc3a8dcc3534893ee03947777609a4e9cafff18998b79fb89916bf2a624f47749c41b40061a5ff370183
-
SSDEEP
3072:bPNnEMUvutnGAL60p4XKJBjL0GIMzEGjw2hqNJ:bNAvutnGAL60WXuB/uepg
Static task
static1
Behavioral task
behavioral1
Sample
0ffab407dd3ebd93f007e24f439bbda8c8b68d50b5ba6537213608608c6f8d61exe_JC.exe
Resource
win7-20230831-en
Behavioral task
behavioral2
Sample
0ffab407dd3ebd93f007e24f439bbda8c8b68d50b5ba6537213608608c6f8d61exe_JC.exe
Resource
win10v2004-20230915-en
Malware Config
Extracted
smokeloader
up3
Extracted
smokeloader
2020
http://host-file-host6.com/
http://host-host-file8.com/
Targets
-
-
Target
0ffab407dd3ebd93f007e24f439bbda8c8b68d50b5ba6537213608608c6f8d61exe_JC.exe
-
Size
272KB
-
MD5
a2b789e166d74ec2865e7a1c70233ef3
-
SHA1
d2c57c662861fb847c08045044b30473e7d0f334
-
SHA256
0ffab407dd3ebd93f007e24f439bbda8c8b68d50b5ba6537213608608c6f8d61
-
SHA512
b721b0aa220f9d85bb9ed7dc122a3e8c38a1c0e40ae8fc3a8dcc3534893ee03947777609a4e9cafff18998b79fb89916bf2a624f47749c41b40061a5ff370183
-
SSDEEP
3072:bPNnEMUvutnGAL60p4XKJBjL0GIMzEGjw2hqNJ:bNAvutnGAL60WXuB/uepg
Score10/10-
Deletes itself
-
Suspicious use of SetThreadContext
-