General

  • Target

    18ecb438e8fd4f0aff7318a27e14d6b251d9337663bd6fd1a52280cf0f1f24a1

  • Size

    252KB

  • Sample

    230917-j2fqtaba46

  • MD5

    3b162258a5016a32c0fd9a91e7ed5e21

  • SHA1

    88a700313b247b33a0487260b1b9b20352096bc7

  • SHA256

    18ecb438e8fd4f0aff7318a27e14d6b251d9337663bd6fd1a52280cf0f1f24a1

  • SHA512

    62fa6adc19fcdce10404d542faf840daedc60a5a1c73b86ddc70963f4e652cd045050347d49d672738050d0e4e76a5a0e06e7dc276614cd108fc7d344bd2f284

  • SSDEEP

    1536:s3CaZyS1tmTHLQxR5gPJIxyU11Du7rCWvuQvVgI5A0WRilTIfDEt9n/58tyW4KwR:sya8dsEANLW2ocRQI+9/546KwIsUSw0

Malware Config

Extracted

Family

smokeloader

Botnet

pub1

Extracted

Family

smokeloader

Version

2020

C2

http://host-file-host6.com/

http://host-host-file8.com/

rc4.i32
rc4.i32

Targets

    • Target

      18ecb438e8fd4f0aff7318a27e14d6b251d9337663bd6fd1a52280cf0f1f24a1

    • Size

      252KB

    • MD5

      3b162258a5016a32c0fd9a91e7ed5e21

    • SHA1

      88a700313b247b33a0487260b1b9b20352096bc7

    • SHA256

      18ecb438e8fd4f0aff7318a27e14d6b251d9337663bd6fd1a52280cf0f1f24a1

    • SHA512

      62fa6adc19fcdce10404d542faf840daedc60a5a1c73b86ddc70963f4e652cd045050347d49d672738050d0e4e76a5a0e06e7dc276614cd108fc7d344bd2f284

    • SSDEEP

      1536:s3CaZyS1tmTHLQxR5gPJIxyU11Du7rCWvuQvVgI5A0WRilTIfDEt9n/58tyW4KwR:sya8dsEANLW2ocRQI+9/546KwIsUSw0

MITRE ATT&CK Enterprise v15

Tasks