Key Usages
KeyUsageCertSign
KeyUsageCRLSign
Behavioral task
behavioral1
Sample
smsniff.chm
Resource
win7-20230831-en
Behavioral task
behavioral2
Sample
smsniff.chm
Resource
win10v2004-20230915-en
Behavioral task
behavioral3
Sample
smsniff.exe
Resource
win7-20230831-en
Behavioral task
behavioral4
Sample
smsniff.exe
Resource
win10v2004-20230915-en
Target
smartsniff-2-25-en-win.zip
Size
96KB
MD5
a4ac82abd01aff353acda20dc0888181
SHA1
ebf09a23b1b2fada9678d82cc0ebf4e0ea330c90
SHA256
84f77c70fc0cb9a0106a7a08323d58994f3c5fbebbc1e3ea8b3cf64a43a2302f
SHA512
0f6ca72f81e07191df1638a5b100288b361bcfe13046fce154973dbb63a0baafea55dbe1b5d15547f04a6c4cc11da85c1be28b2fc5ab1a02f8afe3ffa82d61ed
SSDEEP
3072:X4EpNcaVg1vY3iF5Z/kjbFjScyvqVXzW8:fEaW1vY3q1kjRvrW8
resource | yara_rule |
---|---|
static1/unpack002/out.upx | Nirsoft |
resource | yara_rule |
---|---|
static1/unpack001/smsniff.exe | upx |
Checks for missing Authenticode signature.
resource |
---|
unpack002/out.upx |
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageTimeStamping
KeyUsageDigitalSignature
KeyUsageContentCommitment
ExtKeyUsageCodeSigning
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ