General

  • Target

    4646265f4b50a7bcc90d7b87cd3a80fab6b348bf1fddb8db8e25b25691fe56e9

  • Size

    352KB

  • Sample

    220128-zb8xnsdcf6

  • MD5

    7cec540b57de2cb38158ec47be2c1c59

  • SHA1

    d5d469fc1fe61b14b8a041da76ad6a503efcce06

  • SHA256

    4646265f4b50a7bcc90d7b87cd3a80fab6b348bf1fddb8db8e25b25691fe56e9

  • SHA512

    734d11783660d9961df652d5fa710b9e51afa26ab74a1f8c83ad21d559a21998a6083ef1111644b055f635ac17394a67ca70643d420a1cbf73f5db9ca48fad20

Malware Config

Extracted

Family

smokeloader

Version

2020

C2

https://oakland-studio.video/search.php

https://seattle-university.video/search.php

rc4.i32
rc4.i32

Targets

    • Target

      4646265f4b50a7bcc90d7b87cd3a80fab6b348bf1fddb8db8e25b25691fe56e9

    • Size

      352KB

    • MD5

      7cec540b57de2cb38158ec47be2c1c59

    • SHA1

      d5d469fc1fe61b14b8a041da76ad6a503efcce06

    • SHA256

      4646265f4b50a7bcc90d7b87cd3a80fab6b348bf1fddb8db8e25b25691fe56e9

    • SHA512

      734d11783660d9961df652d5fa710b9e51afa26ab74a1f8c83ad21d559a21998a6083ef1111644b055f635ac17394a67ca70643d420a1cbf73f5db9ca48fad20

MITRE ATT&CK Matrix ATT&CK v6

Execution

Command-Line Interface

1
T1059

Persistence

Modify Existing Service

1
T1031

Defense Evasion

Modify Registry

1
T1112

Discovery

Query Registry

1
T1012

Peripheral Device Discovery

1
T1120

System Information Discovery

3
T1082

Process Discovery

1
T1057

Collection

Email Collection

1
T1114

Tasks