General

  • Target

    2ad414b7dd58b913b890a8f8846b4f6308f7f833eff4b7e2d868d38842906419

  • Size

    297KB

  • Sample

    230915-lrb1zscf75

  • MD5

    73acd62f449c03253899a1b4d8401741

  • SHA1

    c42c786a717dcc876df1d86e4bfd7a1092f2f627

  • SHA256

    2ad414b7dd58b913b890a8f8846b4f6308f7f833eff4b7e2d868d38842906419

  • SHA512

    078857cb54716663fcfd2d54e3cbd61814fafd284ec6a6149b2a60c8cc15ac46a550207ceca70381e4c840ec4402c2acf4c9711e9b74e5914cbe2cf206447d1d

  • SSDEEP

    3072:3RUHAOXbBQX1O0NUgc6RU94NSXyQxIuiMo2S5MYZN9mNF7Te7vT:hUxX1QX1xN2kG4NDQIu9jSxZN967TI

Malware Config

Extracted

Family

smokeloader

Botnet

pub1

Extracted

Family

smokeloader

Version

2020

C2

http://host-file-host6.com/

http://host-host-file8.com/

rc4.i32
rc4.i32

Targets

    • Target

      2ad414b7dd58b913b890a8f8846b4f6308f7f833eff4b7e2d868d38842906419

    • Size

      297KB

    • MD5

      73acd62f449c03253899a1b4d8401741

    • SHA1

      c42c786a717dcc876df1d86e4bfd7a1092f2f627

    • SHA256

      2ad414b7dd58b913b890a8f8846b4f6308f7f833eff4b7e2d868d38842906419

    • SHA512

      078857cb54716663fcfd2d54e3cbd61814fafd284ec6a6149b2a60c8cc15ac46a550207ceca70381e4c840ec4402c2acf4c9711e9b74e5914cbe2cf206447d1d

    • SSDEEP

      3072:3RUHAOXbBQX1O0NUgc6RU94NSXyQxIuiMo2S5MYZN9mNF7Te7vT:hUxX1QX1xN2kG4NDQIu9jSxZN967TI

MITRE ATT&CK Enterprise v15

Tasks