Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
c7497b483d525b9baca75bb3066ac7f0N.exe
-
Size
154KB
-
Sample
240827-hfpadszalq
-
MD5
c7497b483d525b9baca75bb3066ac7f0
-
SHA1
f18de84a512c60f20c9cc8d7ca9eafcd0eceaa49
-
SHA256
5af8a80f646b2d5cb567bddf0c9e0907267610310211a69cd28d708070d569a2
-
SHA512
7a2058ce528be5325ed341c2beeaa338f0b02da009961484fd221a6eab3584b36912614b0e9bbb5972ecbbc2813a01aa6d77eac16d7a3d36f91e26858af6904b
-
SSDEEP
3072:ghKKUaOlhLwGYSy/Jq6CEFVAu8qk+5NmmFL5E0MdLPN:oK9aOlh6t/0+5NlobN
Malware Config
Extracted
smokeloader
ku11
Targets
-
-
Target
c7497b483d525b9baca75bb3066ac7f0N.exe
-
Size
154KB
-
MD5
c7497b483d525b9baca75bb3066ac7f0
-
SHA1
f18de84a512c60f20c9cc8d7ca9eafcd0eceaa49
-
SHA256
5af8a80f646b2d5cb567bddf0c9e0907267610310211a69cd28d708070d569a2
-
SHA512
7a2058ce528be5325ed341c2beeaa338f0b02da009961484fd221a6eab3584b36912614b0e9bbb5972ecbbc2813a01aa6d77eac16d7a3d36f91e26858af6904b
-
SSDEEP
3072:ghKKUaOlhLwGYSy/Jq6CEFVAu8qk+5NmmFL5E0MdLPN:oK9aOlh6t/0+5NlobN
Score10/10-
SmokeLoader
Modular backdoor trojan in use since 2014.
-
Loads dropped DLL
-