Overview

overview

10

Static

static

3

ee83fed419...36.exe

windows7-x64

10

ee83fed419...36.exe

windows10-2004-x64

10

Analysis

  • max time kernel
    119s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20240729-en
  • resource tags

    arch:x64arch:x86image:win7-20240729-enlocale:en-usos:windows7-x64system
  • submitted
    25-09-2024 05:57

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    ee83fed4193c74b9726be2372212a536.exe

  • Size

    214KB

  • MD5

    ee83fed4193c74b9726be2372212a536

  • SHA1

    057d11d83e96c5332b090ee500d10e2e617c1434

  • SHA256

    f06fca211f3ee54ebd6f7c25820901219592e0736be09a260ae774f6806376bd

  • SHA512

    d802ea21dd6ce7e8fb7c9ef3d9b22689550a59bc92f6e68ff8dd495cf1887286904dceef4385632eeda060430cfa09abe111dcbe0c51fdde2457b8bbec59c780

  • SSDEEP

    3072:ZOFL8HNl8bopbq1OjM5HA/qabpk3r+XdabhYesl5f1:aLqNl0opekjMBAxbpg+GhYF

Score
10/10
smokeloaderpub2backdoortrojan

Malware Config

Extracted

Family

smokeloader

Botnet

pub2

Signatures

Processes

  • C:\Users\Admin\AppData\Local\Temp\ee83fed4193c74b9726be2372212a536.exe
    "C:\Users\Admin\AppData\Local\Temp\ee83fed4193c74b9726be2372212a536.exe"
    1⤵
      PID:2932

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • memory/2932-3-0x0000000000220000-0x000000000022B000-memory.dmp

      Filesize

      44KB

      Download

    • memory/2932-4-0x0000000000400000-0x000000000040B000-memory.dmp

      Filesize

      44KB

      Download

    • memory/2932-2-0x00000000004D0000-0x00000000005D0000-memory.dmp

      Filesize

      1024KB

      Download

    • memory/2932-1-0x0000000000400000-0x0000000000448000-memory.dmp

      Filesize

      288KB

      Download

    • memory/2932-5-0x00000000004D0000-0x00000000005D0000-memory.dmp

      Filesize

      1024KB

      Download