General

  • Target

    0a59a0320508fe5a84a75763c5b0a5b3588e2f0f2151331cc76a54cd55d66056

  • Size

    238KB

  • Sample

    230914-z2sclsfa7t

  • MD5

    3a767b495869744380a054356e869055

  • SHA1

    9ab0374b277857402158a7abc4a104bb92b45277

  • SHA256

    0a59a0320508fe5a84a75763c5b0a5b3588e2f0f2151331cc76a54cd55d66056

  • SHA512

    95f7defdd89c3fc69077dcccd3c1cba17de71795f5a30b51b6ccbcc1df01a3d599be021bd5fce126e77fbc0ffa5133dae9915a7edb6e6e2ea4ced8b3bfd8b7b6

  • SSDEEP

    3072:3H/EXLeHB/LYmT9WCem0AXFw5nLqN49i+rmgha/OQMPUE8Km5s8tP+T7o22:cbKLYcZeTca5ea92camQwD8tP+T1

Malware Config

Extracted

Family

smokeloader

Botnet

pub1

Extracted

Family

smokeloader

Version

2020

C2

http://host-file-host6.com/

http://host-host-file8.com/

rc4.i32
rc4.i32

Targets

    • Target

      0a59a0320508fe5a84a75763c5b0a5b3588e2f0f2151331cc76a54cd55d66056

    • Size

      238KB

    • MD5

      3a767b495869744380a054356e869055

    • SHA1

      9ab0374b277857402158a7abc4a104bb92b45277

    • SHA256

      0a59a0320508fe5a84a75763c5b0a5b3588e2f0f2151331cc76a54cd55d66056

    • SHA512

      95f7defdd89c3fc69077dcccd3c1cba17de71795f5a30b51b6ccbcc1df01a3d599be021bd5fce126e77fbc0ffa5133dae9915a7edb6e6e2ea4ced8b3bfd8b7b6

    • SSDEEP

      3072:3H/EXLeHB/LYmT9WCem0AXFw5nLqN49i+rmgha/OQMPUE8Km5s8tP+T7o22:cbKLYcZeTca5ea92camQwD8tP+T1

MITRE ATT&CK Enterprise v15

Tasks