smokeloader | febb01c58274dc2b7127823be1da06a8f9715bcef8c20ef480696d96e0ed7d7b[.]zip

Resubmissions

26/05/2024, 17:56

26/05/2024, 14:05

Target

febb01c58274dc2b7127823be1da06a8f9715bcef8c20ef480696d96e0ed7d7b.zip
Size

28KB
MD5

8e3699fc59bec81d3be38a0f419526be
SHA1

ec26b0317c182dbc5469868abccc13466868a469
SHA256

3be471ed6d998b4209f7e76928290181c1f7ce7c0e7627d7eb50dacf5f580da9
SHA512

8afc1a096a88942b2cfdd4443f6f7bc535e92e9d9696ad6229b5e8a47e68eb53a87e86194bedfcc7bf1ca7e8567ab65589894d4e1b3c73e9a9c7752920e8eb9f
SSDEEP

768:09o2NBnLehTP1SdX0JKxG7wxAHQAW+iMsnppoH:z2NBShsdX0oU7AAHzi/poH

Score

10^/10

smokeloader

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/febb01c58274dc2b7127823be1da06a8f9715bcef8c20ef480696d96e0ed7d7b.exe

febb01c58274dc2b7127823be1da06a8f9715bcef8c20ef480696d96e0ed7d7b.zip
.zip

Password: infected
febb01c58274dc2b7127823be1da06a8f9715bcef8c20ef480696d96e0ed7d7b.exe
.exe windows:1 windows x86 arch:x86

Password: infected

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 37KB - Virtual size: 36KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE