General

  • Target

    7816af4bfde02b4c8b8e2d9f73b80840N.exe

  • Size

    304KB

  • Sample

    240829-pfgc4s1bra

  • MD5

    7816af4bfde02b4c8b8e2d9f73b80840

  • SHA1

    3c4470c1ea8d35196f9a386ef6575b2cd45e5b5d

  • SHA256

    921f09ab9c94ca5a866d028b363b7b3c65eee7d97b04982aca23ff4eb770bda8

  • SHA512

    acf69743d1a22adc5aec5eabbda35c711f23085edd976c39f2f9673dba13bdf25a3b734960146a2b57b72b97e9708c76eaaf8bb00f30c05ea9b3a705ee295d58

  • SSDEEP

    6144:KbmGsPYpE2Iz2ga60xe6wtMJxLJKwTrwZgfF66DR:bGOYpE2Iz2ga60lwtILYw3GoFR

Malware Config

Extracted

Family

smokeloader

Botnet

0204

Targets

    • Target

      7816af4bfde02b4c8b8e2d9f73b80840N.exe

    • Size

      304KB

    • MD5

      7816af4bfde02b4c8b8e2d9f73b80840

    • SHA1

      3c4470c1ea8d35196f9a386ef6575b2cd45e5b5d

    • SHA256

      921f09ab9c94ca5a866d028b363b7b3c65eee7d97b04982aca23ff4eb770bda8

    • SHA512

      acf69743d1a22adc5aec5eabbda35c711f23085edd976c39f2f9673dba13bdf25a3b734960146a2b57b72b97e9708c76eaaf8bb00f30c05ea9b3a705ee295d58

    • SSDEEP

      6144:KbmGsPYpE2Iz2ga60xe6wtMJxLJKwTrwZgfF66DR:bGOYpE2Iz2ga60lwtILYw3GoFR

    • SmokeLoader

      Modular backdoor trojan in use since 2014.

    • Loads dropped DLL

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v15

Tasks

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.