General

  • Target

    aa787a71d94d1a72d75f3d8509a137240d175c712cea8f11cdd804ee09f5969a

  • Size

    269KB

  • Sample

    230916-sgxchaeb87

  • MD5

    ec817c8e0d8590cd7f18ae5864fe4635

  • SHA1

    bf2c5f510a9ee9449635fe2a2aa3a47cb883f959

  • SHA256

    aa787a71d94d1a72d75f3d8509a137240d175c712cea8f11cdd804ee09f5969a

  • SHA512

    b51cfbd96ad56d266829604627228263484a81b8b36f31d328d22532922bb24da73fab821c04b1c936449005ee35d94b9cbd018ea1ae9cb43849deef710950c5

  • SSDEEP

    1536:WSUqMwGfmzgY8EtSP0klX5CZXHj+UXBlkvWWCXakuZiup1mbk5h+roOEUPA/eZYt:WHw9Fthkz4XD++BwDkBup1mbM+DZUX

Malware Config

Extracted

Family

smokeloader

Botnet

pub1

Extracted

Family

smokeloader

Version

2020

C2

http://host-file-host6.com/

http://host-host-file8.com/

rc4.i32
rc4.i32

Targets

    • Target

      aa787a71d94d1a72d75f3d8509a137240d175c712cea8f11cdd804ee09f5969a

    • Size

      269KB

    • MD5

      ec817c8e0d8590cd7f18ae5864fe4635

    • SHA1

      bf2c5f510a9ee9449635fe2a2aa3a47cb883f959

    • SHA256

      aa787a71d94d1a72d75f3d8509a137240d175c712cea8f11cdd804ee09f5969a

    • SHA512

      b51cfbd96ad56d266829604627228263484a81b8b36f31d328d22532922bb24da73fab821c04b1c936449005ee35d94b9cbd018ea1ae9cb43849deef710950c5

    • SSDEEP

      1536:WSUqMwGfmzgY8EtSP0klX5CZXHj+UXBlkvWWCXakuZiup1mbk5h+roOEUPA/eZYt:WHw9Fthkz4XD++BwDkBup1mbM+DZUX

MITRE ATT&CK Enterprise v15

Tasks