Overview

overview

7

Static

static

7

BotNets/Sm...er.exe

windows7-x64

7

BotNets/Sm...er.exe

windows10-2004-x64

7

BotNets/Sm...er.exe

windows7-x64

1

BotNets/Sm...er.exe

windows10-2004-x64

1

BotNets/Sm...x.html

windows7-x64

1

BotNets/Sm...x.html

windows10-2004-x64

1

BotNets/Sm...x.html

windows7-x64

1

BotNets/Sm...x.html

windows10-2004-x64

1

BotNets/Sm...x.html

windows7-x64

1

BotNets/Sm...x.html

windows10-2004-x64

1

BotNets/Sm...x.html

windows7-x64

1

BotNets/Sm...x.html

windows10-2004-x64

1

BotNets/Sm...oip.js

windows7-x64

1

BotNets/Sm...oip.js

windows10-2004-x64

1

BotNets/Sm...x.html

windows7-x64

1

BotNets/Sm...x.html

windows10-2004-x64

1

BotNets/Sm...x.html

windows7-x64

1

BotNets/Sm...x.html

windows10-2004-x64

1

BotNets/Sm...x.html

windows7-x64

1

BotNets/Sm...x.html

windows10-2004-x64

1

BotNets/Sm...x.html

windows7-x64

1

BotNets/Sm...x.html

windows10-2004-x64

1

BotNets/Sm...er.exe

windows7-x64

7

BotNets/Sm...er.exe

windows10-2004-x64

7

BotNets/Th...de.pdf

windows7-x64

1

BotNets/Th...de.pdf

windows10-2004-x64

1

BotNets/Wa...al.url

windows7-x64

1

BotNets/Wa...al.url

windows10-2004-x64

1

BotNets/Wa...be.exe

windows7-x64

1

BotNets/Wa...be.exe

windows10-2004-x64

1

BotNets/Wa...be.exe

windows7-x64

1

BotNets/Wa...be.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    1791s
  • max time network
    1169s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20231215-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20231215-enlocale:en-usos:windows10-2004-x64system
  • submitted
    04-04-2024 17:02

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    BotNets/SmokeBot/tools/Parser.exe

  • Size

    159KB

  • MD5

    139ed6ade0b105e35208e5e02fda8a12

  • SHA1

    fb078d770769609aef61e4cb4c273356d380def9

  • SHA256

    f646ae693b297d12a62bbc130ceb536539d42e6fae4bd835de3e594e0fa0b07c

  • SHA512

    7f4f9e0da81ebd68c4f82dc94c6a3f53e5c30481a47bbb5b44cd0bca48b10bcc0234bfba830a0d8a32b1caf1bfd7a0946516113085c6563ad15f0ea4a26d92b1

  • SSDEEP

    3072:QUvOPctYN71FgRn6hQbxZQ26fWZ+NTiHTtlLG4gKqN3doaz+fdG:QEOPc2NJFgRnmQbxZPwrtizXhgBNNo2O

Score
7/10
upx

Malware Config

Signatures

  • UPX packed file 2 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx

Processes

  • C:\Users\Admin\AppData\Local\Temp\BotNets\SmokeBot\tools\Parser.exe
    "C:\Users\Admin\AppData\Local\Temp\BotNets\SmokeBot\tools\Parser.exe"
    1⤵
      PID:4356

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • memory/4356-0-0x0000000000400000-0x000000000046B000-memory.dmp
      Filesize

      428KB

      Download
    • memory/4356-1-0x0000000002400000-0x0000000002401000-memory.dmp
      Filesize

      4KB

      Download
    • memory/4356-2-0x0000000000400000-0x000000000046B000-memory.dmp
      Filesize

      428KB

      Download