General

  • Target

    setup.exe

  • Size

    249KB

  • Sample

    230328-bk36sagb95

  • MD5

    6ad315d207983a8b1e5f1fd24d228661

  • SHA1

    76dbdcd43b6987aaa985025895c8255c2aca0c00

  • SHA256

    0a208020c34b31024a98e05779577074e66848e93585295b283d5731cef8cc82

  • SHA512

    f304b64bb9067f449ef8a047aedcde1151b69f1ed11dd338f7d179bbfd9a01ed40f8bc0da9adcd91f687bc80822a595ccc23c9c3becdfe70fbf5052c60be0416

  • SSDEEP

    3072:BrcaHyL1j6eLE8oPSU5hviZro6erqseW+0VwEHlJfigOpIgNtw85YPmdj5EwTWSf:COyLIeLE9zvSoP3VSEFJq5Ntw1uBB

Malware Config

Extracted

Family

smokeloader

Botnet

sprg

Extracted

Family

smokeloader

Version

2022

C2

http://hoh0aeghwugh2gie.com/

http://hie7doodohpae4na.com/

http://aek0aicifaloh1yo.com/

http://yic0oosaeiy7ahng.com/

http://wa5zu7sekai8xeih.com/

rc4.i32
rc4.i32

Targets

    • Target

      setup.exe

    • Size

      249KB

    • MD5

      6ad315d207983a8b1e5f1fd24d228661

    • SHA1

      76dbdcd43b6987aaa985025895c8255c2aca0c00

    • SHA256

      0a208020c34b31024a98e05779577074e66848e93585295b283d5731cef8cc82

    • SHA512

      f304b64bb9067f449ef8a047aedcde1151b69f1ed11dd338f7d179bbfd9a01ed40f8bc0da9adcd91f687bc80822a595ccc23c9c3becdfe70fbf5052c60be0416

    • SSDEEP

      3072:BrcaHyL1j6eLE8oPSU5hviZro6erqseW+0VwEHlJfigOpIgNtw85YPmdj5EwTWSf:COyLIeLE9zvSoP3VSEFJq5Ntw1uBB

MITRE ATT&CK Matrix ATT&CK v6

Discovery

Query Registry

2
T1012

Peripheral Device Discovery

1
T1120

System Information Discovery

1
T1082

Tasks