Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

3

3a658a682d...80.exe

windows7-x64

10

3a658a682d...80.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    3a658a682d7961b370dde9b8e65aba80.exe

  • Size

    227KB

  • Sample

    240201-kbabsahdcm

  • MD5

    3a658a682d7961b370dde9b8e65aba80

  • SHA1

    1c6dec6db75e49fe3bc0be4fec093d2ebc7b12d2

  • SHA256

    cd9dfd76dbfc11d9c6dd279b346cca489591b551bba392ade52486ee95918430

  • SHA512

    18d96158025e9c3ec10bcf12751361630c59751d8c5063560eb799fc683cd2b6ae1dba44f3c66ad25a398d8df8fd0682c90c7505d4851a48a723e137392f953e

  • SSDEEP

    3072:JG1se/J24L9letmyKn4whMtuuONm9r9opAS9uUHbnx7XkAs9DeBrmu:JG1se/JFIq3Mt0NmILThXkA

Score
10/10
smokeloaderpub1backdoortrojan

Malware Config

Extracted

Family

smokeloader

Botnet

pub1

Extracted

Family

smokeloader

Version

2022

C2

http://gxutc2c.com/tmp/index.php

http://proekt8.ru/tmp/index.php

http://mth.com.ua/tmp/index.php

http://pirateking.online/tmp/index.php

http://piratia.pw/tmp/index.php

http://go-piratia.ru/tmp/index.php
rc4.i32
rc4.i32

Targets

    • Target

      3a658a682d7961b370dde9b8e65aba80.exe

    • Size

      227KB

    • MD5

      3a658a682d7961b370dde9b8e65aba80

    • SHA1

      1c6dec6db75e49fe3bc0be4fec093d2ebc7b12d2

    • SHA256

      cd9dfd76dbfc11d9c6dd279b346cca489591b551bba392ade52486ee95918430

    • SHA512

      18d96158025e9c3ec10bcf12751361630c59751d8c5063560eb799fc683cd2b6ae1dba44f3c66ad25a398d8df8fd0682c90c7505d4851a48a723e137392f953e

    • SSDEEP

      3072:JG1se/J24L9letmyKn4whMtuuONm9r9opAS9uUHbnx7XkAs9DeBrmu:JG1se/JFIq3Mt0NmILThXkA

    Score
    10/10
    smokeloaderpub1backdoortrojan

    • SmokeLoader

      Modular backdoor trojan in use since 2014.

      trojanbackdoorsmokeloader

    • Downloads MZ/PE file

    • Deletes itself

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks