Resubmissions

12-08-2023 16:10

230812-tmjh9sed3y 10

12-08-2023 16:06

230812-tj267sec9y 10

General

  • Target

    3745852d8e2b4f6846d4133f11bd8865.exe

  • Size

    240KB

  • Sample

    230812-tmjh9sed3y

  • MD5

    3745852d8e2b4f6846d4133f11bd8865

  • SHA1

    0fffa9475ce5b83265a590ec60212b1895dbe92d

  • SHA256

    c584c7651362204e41f82b9c0c2c562d5022d5c30f1339a393d9820c25079dbf

  • SHA512

    4ee979630507fe7bcbe2dc9bad7b6b9bdd08d184f7be945a325e2eb6feeb139b14dde458edf9d5c9f15ff252cf623d4456c9fb17022ce1fd4a3ba617863e5122

  • SSDEEP

    3072:NyXqsaTaLroCgH8AWBLk/0TIWg2hLszrGYzmF8A/TkRkmu:NyATaLrsDWNk/00WJhLAGYM/btB

Malware Config

Extracted

Family

smokeloader

Version

2022

C2

http://potunulit.org/

http://hutnilior.net/

http://bulimu55t.net/

http://soryytlic4.net/

http://novanosa5org.org/

http://nuljjjnuli.org/

http://tolilolihul.net/

http://somatoka51hub.net/

http://hujukui3.net/

http://bukubuka1.net/

http://golilopaster.org/

http://newzelannd66.org/

http://otriluyttn.org/

rc4.i32
rc4.i32

Targets

    • Target

      3745852d8e2b4f6846d4133f11bd8865.exe

    • Size

      240KB

    • MD5

      3745852d8e2b4f6846d4133f11bd8865

    • SHA1

      0fffa9475ce5b83265a590ec60212b1895dbe92d

    • SHA256

      c584c7651362204e41f82b9c0c2c562d5022d5c30f1339a393d9820c25079dbf

    • SHA512

      4ee979630507fe7bcbe2dc9bad7b6b9bdd08d184f7be945a325e2eb6feeb139b14dde458edf9d5c9f15ff252cf623d4456c9fb17022ce1fd4a3ba617863e5122

    • SSDEEP

      3072:NyXqsaTaLroCgH8AWBLk/0TIWg2hLszrGYzmF8A/TkRkmu:NyATaLrsDWNk/00WJhLAGYM/btB

MITRE ATT&CK Matrix

Tasks