2025-02-02_240a9ee7cdbab77a91c67f371c6ba141_smoke-loader_wapomi

Sharing

Copy URL

Twitter E-mail

General

Target

2025-02-02_240a9ee7cdbab77a91c67f371c6ba141_smoke-loader_wapomi
Size

2.7MB
MD5

240a9ee7cdbab77a91c67f371c6ba141
SHA1

2631d1ebc245f3e82189ac301bddffecf425f9fa
SHA256

b7e7f159d2764c8882c5105ee00ef1eda2da921cc98a39e8ec85c6edfdbdc902
SHA512

8d8bc0ac1e7b0746c5d80e2e762f9b6bab429368dc3cb7413381d0c3ff4eb672106c35aeb961a8d94cfd965b62ad5b647db515fd9d020800681b189095129e1d
SSDEEP

49152:X4R58S5N0HB/bbICMmT5txA4BbFldYnJTSoFqpx0O9XLQG+p0ImszXiWA06Ygzes:X4R58S5N0HB/bbICMmT5txA4BbFldYns

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2025-02-02_240a9ee7cdbab77a91c67f371c6ba141_smoke-loader_wapomi

Files

2025-02-02_240a9ee7cdbab77a91c67f371c6ba141_smoke-loader_wapomi
.exe windows:5 windows x86 arch:x86

29307ef77ea94259e99f987498998a8f

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
HeapAlloc
HeapReAlloc
CreateProcessA
MoveFileA
GetSystemTimeAsFileTime
GetTimeFormatA
GetDateFormatA
HeapSize
SetStdHandle
GetFileType
GetSystemInfo
VirtualQuery
GetStdHandle
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetStartupInfoA
HeapCreate
QueryPerformanceCounter
GetCPInfo
GetACP
TerminateProcess
IsValidCodePage
LCMapStringW
InitializeCriticalSectionAndSpinCount
LCMapStringA
GetFileAttributesA
CreatePipe
GetExitCodeProcess
GetConsoleCP
GetConsoleMode
GetTimeZoneInformation
GetUserDefaultLCID
GetLocaleInfoA
EnumSystemLocalesA
IsValidLocale
GetStringTypeA
GetStringTypeW
GetProcessHeap
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
SetEnvironmentVariableA
FreeEnvironmentStringsA
GetEnvironmentStrings
RaiseException
HeapFree
ExitProcess
RtlUnwind
GetStartupInfoW
GetFileSizeEx
GetFileAttributesW
SetErrorMode
WritePrivateProfileStringW
TlsFree
DeleteCriticalSection
LocalReAlloc
TlsSetValue
TlsAlloc
InitializeCriticalSection
GlobalHandle
EnterCriticalSection
TlsGetValue
LeaveCriticalSection
LocalAlloc
GetFullPathNameW
GetVolumeInformationW
DuplicateHandle
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
lstrcmpiW
GetThreadLocale
GetStringTypeExW
GlobalFlags
GetProfileIntW
lstrlenA
GetCurrentThread
ConvertDefaultLocale
EnumResourceLanguagesW
lstrcmpA
InterlockedExchange
FormatMessageW
LocalFree
GetModuleHandleA
VirtualProtect
lstrcmpW
GetVersionExA
GetCurrentProcessId
GlobalGetAtomNameW
WideCharToMultiByte
GlobalReAlloc
GlobalAddAtomW
GlobalFindAtomW
GlobalDeleteAtom
GetCurrentThreadId
SetLastError
MulDiv
GetVersion
GetLocaleInfoW
EnumSystemLocalesW
lstrlenW
lstrcpyW
InterlockedDecrement
InterlockedIncrement
GetTickCount
RemoveDirectoryW
CreateDirectoryW
CopyFileW
MoveFileExW
GetModuleHandleW
GetModuleFileNameA
GetLastError
FormatMessageA
LoadLibraryA
EndUpdateResourceW
BeginUpdateResourceW
IsBadReadPtr
FreeLibrary
FindNextFileW
GetTempPathW
GetTempFileNameW
UpdateResourceW
DeleteFileW
CreateFileW
CreateFileA
GetCurrentProcess
GetVersionExW
Sleep
CreateProcessW
GetShortPathNameW
GlobalFree
DeleteFileA
ReleaseMutex
WaitForSingleObject
FindFirstFileW
FindClose
CreateMutexW
VirtualAlloc
CompareStringA
CompareStringW
GlobalSize
GetFileTime
FileTimeToLocalFileTime
FileTimeToSystemTime
FreeResource
OpenThread
TerminateThread
CloseHandle
GlobalAlloc
GlobalLock
GlobalUnlock
lstrcpynW
LoadLibraryW
GetProcAddress
GetWindowsDirectoryW
GetSystemDirectoryW
MultiByteToWideChar
LoadResource
LockResource
SizeofResource
FindResourceW
ExitThread
GetLongPathNameW
GetFileSize
ReadFile
VirtualFree
CreateThread
GetModuleFileNameW
GetCommandLineW
GetTempPathA
GetTempFileNameA
GetOEMCP
WriteFile

user32

UnregisterClassW
CharNextW
InvalidateRgn
GetNextDlgGroupItem
PostThreadMessageW
SendDlgItemMessageA
GetClassLongW
GetForegroundWindow
GetTopWindow
DestroyWindow
GetMessageTime
TrackPopupMenu
SetScrollRange
GetScrollRange
SetScrollPos
GetScrollPos
GetClassInfoExW
RegisterClassW
AdjustWindowRectEx
DeferWindowPos
GetScrollInfo
SetScrollInfo
SystemParametersInfoA
UnpackDDElParam
ReuseDDElParam
WinHelpW
GetWindowThreadProcessId
IsWindowEnabled
PeekMessageW
LoadAcceleratorsW
UpdateWindow
InsertMenuItemW
GetLastActivePopup
BringWindowToTop
TranslateAcceleratorW
GetMenuStringW
BeginDeferWindowPos
EndDeferWindowPos
GetDlgCtrlID
EqualRect
GetDoubleClickTime
GetCapture
InvertRect
ClipCursor
DrawFrameControl
ShowScrollBar
UnionRect
SetParent
SetFocus
GetDesktopWindow
DrawMenuBar
RemoveMenu
ModifyMenuW
InsertMenuW
GetMenuState
GetMenuItemID
GetMenuDefaultItem
DeleteMenu
DrawEdge
ValidateRect
BeginPaint
EndPaint
SetMenu
GetMenuItemCount
CallNextHookEx
GetClassNameW
SetPropW
CallWindowProcW
GetPropW
RemovePropW
UnhookWindowsHookEx
SetWindowsHookExW
IntersectRect
IsRectEmpty
CharUpperW
GetMenu
WindowFromDC
MapVirtualKeyW
GetKeyNameTextW
CopyImage
GetMenuItemRect
SystemParametersInfoW
IsMenu
GetWindowDC
GetWindow
SetWindowPlacement
IsDialogMessageW
SetActiveWindow
GetMessagePos
MapWindowPoints
GetSysColorBrush
ShowCursor
TrackMouseEvent
IsWindow
MessageBeep
SetCapture
SetTimer
SetRectEmpty
SetRect
PtInRect
GetMessageW
CopyIcon
GetKeyState
ReleaseCapture
GetCursor
GetClassInfoW
DefWindowProcW
GrayStringW
DrawTextExW
DrawTextW
TabbedTextOutW
WindowFromPoint
GetNextDlgTabItem
GetActiveWindow
ClientToScreen
DrawFocusRect
DrawStateW
FrameRect
OffsetRect
InflateRect
CopyRect
LoadMenuW
LoadImageW
GetIconInfo
CreateIconIndirect
TrackPopupMenuEx
SetCursor
DestroyIcon
DestroyCursor
GetDC
ReleaseDC
CreateIconFromResourceEx
GetSysColor
FillRect
CreateWindowExW
SetWindowPos
MessageBoxA
DrawIconEx
EndDialog
GetDlgItemTextA
MessageBoxW
IsDlgButtonChecked
GetWindowTextLengthW
SetDlgItemTextW
PostMessageW
GetWindowTextA
GetClipboardData
IsClipboardFormatAvailable
SetWindowContextHelpId
ShowOwnedPopups
PostQuitMessage
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
EnableMenuItem
EnumClipboardFormats
GetClipboardFormatNameW
IsWindowVisible
CreateDialogParamW
SetWindowTextA
RedrawWindow
SetWindowTextW
MoveWindow
OpenClipboard
SendMessageA
CheckMenuItem
MapDialogRect
TranslateMDISysAccel
DefMDIChildProcW
DefFrameProcW
CreateDialogIndirectParamW
RegisterWindowMessageW
GetMenuItemInfoW
SendDlgItemMessageW
EmptyClipboard
RegisterClipboardFormatW
SetClipboardData
CloseClipboard
GetParent
wsprintfA
AppendMenuW
LoadIconW
LoadCursorW
ScreenToClient
GetWindowRect
IsIconic
GetSubMenu
CreatePopupMenu
DrawIcon
GetWindowPlacement
GetWindowLongW
SetWindowLongW
GetWindowTextW
ShowWindow
SetForegroundWindow
GetSystemMetrics
LoadBitmapW
InvalidateRect
GetClientRect
wsprintfW
GetDlgItemTextW
GetDlgItem
EnableWindow
TranslateMessage
DispatchMessageW
IsChild
GetFocus
MenuItemFromPoint
SendMessageW
GetCursorPos
KillTimer
DestroyMenu
GetSystemMenu
CopyAcceleratorTableW

gdi32

SetMapMode
ExcludeClipRect
IntersectClipRect
LineTo
GetViewportExtEx
GetWindowExtEx
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
GetTextMetricsW
SetWindowExtEx
GetClipBox
ExtSelectClipRgn
CopyMetaFileW
GetMapMode
GetCharWidthW
StretchDIBits
GetRgnBox
SetBkMode
RestoreDC
OffsetWindowOrgEx
SaveDC
SetTextAlign
MoveToEx
GetTextExtentPointW
GetCurrentPositionEx
GetTextColor
EndDoc
AbortDoc
EndPage
StartPage
StartDocW
GetBkColor
PatBlt
DPtoLP
CreateEllipticRgn
CreateRoundRectRgn
RoundRect
GetNearestColor
SetBrushOrgEx
GetDeviceCaps
CombineRgn
CreateRectRgnIndirect
CreateRectRgn
CreatePatternBrush
CreateHatchBrush
UnrealizeObject
SelectClipRgn
SetWindowOrgEx
ScaleWindowExtEx
CreateSolidBrush
Rectangle
CreateFontW
CreatePen
GetDIBits
SetDIBits
PtInRegion
StretchBlt
FillRgn
CreatePolygonRgn
PlgBlt
SetBoundsRect
Escape
ExtTextOutW
RectVisible
PtVisible
GetPixel
SetPixel
SetTextColor
GetStockObject
SetStretchBltMode
SelectPalette
RealizePalette
CreateDIBitmap
CreatePalette
CreateDIBSection
GetCurrentObject
CreateBitmap
GetObjectW
SetBkColor
DeleteDC
GetTextExtentPoint32W
BitBlt
SelectObject
CreateCompatibleDC
CreateCompatibleBitmap
TextOutA
TextOutW
CreateFontIndirectW
DeleteObject
GetTextAlign

comdlg32

GetSaveFileNameW
GetOpenFileNameW
GetFileTitleW

winspool.drv

OpenPrinterW
DocumentPropertiesW
ClosePrinter

advapi32

RegQueryValueExW
RegOpenKeyExW
RegSetValueExW
RegCreateKeyExW
RegDeleteKeyW
RegSetValueW
RegEnumKeyW
RegOpenKeyW
RegCloseKey
RegCreateKeyW
RegQueryValueW

shell32

ExtractIconW
DragQueryFileW
ShellExecuteExW
ShellExecuteW
SHGetSpecialFolderPathW
SHGetDesktopFolder
SHGetPathFromIDListW
SHBrowseForFolderW
SHGetFileInfoW
DragFinish

comctl32

ord17
ImageList_Add
ImageList_Create
ImageList_Destroy
InitCommonControlsEx
ord8
_TrackMouseEvent
ImageList_GetIconSize
ImageList_DrawEx

shlwapi

PathMatchSpecW
StrRetToStrW
StrFormatByteSizeW
PathFindExtensionW
PathFindFileNameW
PathStripToRootW
PathIsUNCW
PathRemoveFileSpecW

oledlg

OleUIBusyW

ole32

CoTaskMemAlloc
ReleaseStgMedium
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
CoTaskMemFree
CoCreateInstance
CreateStreamOnHGlobal
CoInitialize
OleDuplicateData
CLSIDFromProgID
CLSIDFromString
RegisterDragDrop
CoLockObjectExternal
RevokeDragDrop
OleGetClipboard
CoUninitialize
CoInitializeEx
OleUninitialize
CoFreeUnusedLibraries
OleInitialize
OleSetClipboard
OleIsCurrentClipboard
OleFlushClipboard
DoDragDrop
CoGetClassObject
StgOpenStorageOnILockBytes
CoRegisterMessageFilter
CoRevokeClassObject

oleaut32

SysAllocString
OleCreateFontIndirect
SafeArrayDestroy
VariantCopy
SysStringLen
SysFreeString
VariantInit
VariantChangeType
VariantClear
SysAllocStringLen
VarUdateFromDate
SystemTimeToVariantTime
VariantTimeToSystemTime
OleLoadPicture

gdiplus

GdipCreateSolidFill
GdipGetImageHeight
GdipGetImageWidth
GdipDrawImageI
GdipDeleteGraphics
GdipCreateFromHDC
GdipDeleteBrush
GdipDisposeImage
GdipCreateBitmapFromStreamICM
GdipCreateBitmapFromStream
GdipAlloc
GdipFree
GdiplusStartup
GdiplusShutdown
GdipCloneBrush
GdipFillRectangleI
GdipCloneImage

imagehlp

BindImageEx
MapFileAndCheckSumW
UnDecorateSymbolName

Sections

.text
Size: 1.5MB - Virtual size: 1.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 445KB - Virtual size: 445KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 50KB - Virtual size: 75KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 671KB - Virtual size: 671KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

,��u�
Size: 16KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

29307ef77ea94259e99f987498998a8f

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

oledlg

ole32

oleaut32

gdiplus

imagehlp

Sections

.text Size: 1.5MB - Virtual size: 1.5MB

.rdata Size: 445KB - Virtual size: 445KB

.data Size: 50KB - Virtual size: 75KB

.rsrc Size: 671KB - Virtual size: 671KB

,���u� Size: 16KB - Virtual size: 20KB

.text
Size: 1.5MB - Virtual size: 1.5MB

.rdata
Size: 445KB - Virtual size: 445KB

.data
Size: 50KB - Virtual size: 75KB

.rsrc
Size: 671KB - Virtual size: 671KB

,��u�
Size: 16KB - Virtual size: 20KB