2025-01-13_72a435462f966a211550f0ca67854242_smoke-loader_wapomi

Sharing

Copy URL

Twitter E-mail

General

Target

2025-01-13_72a435462f966a211550f0ca67854242_smoke-loader_wapomi
Size

149KB
MD5

72a435462f966a211550f0ca67854242
SHA1

c71c0ebc0d2413a21bcc39608bce754cddc54e45
SHA256

9d9ee476dd0a5b8893b877cb2e1b59e1c5b23cf186e7a1dabab3859707405774
SHA512

f7894317060cd39983ae5fa9224a357e49dd1f39d9e12d11a2b5c3a61752b33e78c9aee5420cc68529cbb0d7385e532eeb9f41d72176a63787ca6f4d06507727
SSDEEP

3072:kJE/iHy0e52V2iykLORYQ+9z0RGuX+tqB91QaGCH:p318rAYEu

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2025-01-13_72a435462f966a211550f0ca67854242_smoke-loader_wapomi

Files

2025-01-13_72a435462f966a211550f0ca67854242_smoke-loader_wapomi
.exe windows:4 windows x86 arch:x86

4cbca70f527c893ba0332181f1a2c84c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

ImageList_ReplaceIcon
ImageList_Create
InitCommonControlsEx

kernel32

GetCurrentProcess
TerminateThread
SuspendThread
ResumeThread
InterlockedIncrement
InterlockedDecrement
GlobalLock
GlobalUnlock
FormatMessageW
LocalFree
SetFilePointer
CreateDirectoryW
WriteFile
GetVersionExW
ReadFile
GetFullPathNameW
GetFileSize
FindFirstFileW
GetFileAttributesW
GetLongPathNameW
FindClose
FindNextFileW
WaitForSingleObject
SetEvent
WaitNamedPipeW
ResetEvent
OpenEventW
WideCharToMultiByte
MultiByteToWideChar
GetCommandLineW
QueryPerformanceCounter
GlobalFree
QueryPerformanceFrequency
FlushFileBuffers
CreateFileA
GetStringTypeW
GetStringTypeA
LCMapStringW
LCMapStringA
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
SetStdHandle
GetLocaleInfoA
HeapSize
GetOEMCP
GetACP
GetCPInfo
GetConsoleMode
GetConsoleCP
LoadLibraryA
RtlUnwind
InitializeCriticalSection
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
GetFileType
SetHandleCount
GetEnvironmentStringsW
SetPriorityClass
CloseHandle
lstrcmpiW
SetCurrentDirectoryW
MoveFileW
GetCurrentDirectoryW
GetLastError
CreateFileW
ExitProcess
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
RaiseException
Sleep
SetLastError
TlsFree
TlsSetValue
TlsAlloc
TlsGetValue
GetModuleFileNameA
GetStdHandle
GetModuleHandleA
HeapFree
HeapAlloc
ExitThread
GetCurrentThreadId
CreateThread
GetCommandLineA
GetVersionExA
GetProcessHeap
GetStartupInfoA
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
HeapDestroy
HeapCreate
VirtualFree
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
VirtualAlloc
HeapReAlloc
GetProcAddress

user32

DialogBoxParamW
DefWindowProcW
MessageBoxW
SendMessageW
MoveWindow
PostMessageW
CallWindowProcW
SetWindowTextW
EnableWindow
GetSystemMetrics
GetMessageW
TranslateMessage
DispatchMessageW
GetWindowPlacement
GetWindowRect
LoadCursorW
GetClientRect
RegisterClassExW
LoadIconW
SetWindowLongW
CheckDlgButton
ShowWindow
CreateWindowExW
UpdateWindow
DestroyIcon
SetTimer
PostQuitMessage
KillTimer
GetKeyState
SetFocus
GetWindowLongW
GetWindowTextW
GetDlgItem
EndDialog
SendDlgItemMessageW
GetSysColor
GetSysColorBrush
IsDlgButtonChecked

gdi32

GetTextMetricsW
DeleteDC
CreateFontIndirectW
GetDeviceCaps
SelectObject
CreateICW
SetTextColor
SetBkColor

comdlg32

GetSaveFileNameW
CommDlgExtendedError
GetOpenFileNameW

shell32

SHGetSpecialFolderPathW
CommandLineToArgvW
DragQueryFileW

ole32

OleUninitialize
RevokeDragDrop
CoLockObjectExternal
ReleaseStgMedium
RegisterDragDrop
OleInitialize

Sections

.text
Size: 91KB - Virtual size: 90KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 18KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 17KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

y��u0
Size: 16KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

4cbca70f527c893ba0332181f1a2c84c

Headers

File Characteristics

Imports

comctl32

kernel32

user32

gdi32

comdlg32

shell32

ole32

Sections

.text Size: 91KB - Virtual size: 90KB

.rdata Size: 18KB - Virtual size: 17KB

.data Size: 5KB - Virtual size: 16KB

.rsrc Size: 17KB - Virtual size: 16KB

y��u0 Size: 16KB - Virtual size: 20KB

.text
Size: 91KB - Virtual size: 90KB

.rdata
Size: 18KB - Virtual size: 17KB

.data
Size: 5KB - Virtual size: 16KB

.rsrc
Size: 17KB - Virtual size: 16KB

y��u0
Size: 16KB - Virtual size: 20KB