General

  • Target

    ec3bd9d34fd06a8e83cb2a003e59a0ebbin_JC.zip

  • Size

    141KB

  • Sample

    230917-l71paabh74

  • MD5

    01499119ee8879d862b11f67cf3437db

  • SHA1

    a706337d61e954b50491ec78444f50c8c5b54b49

  • SHA256

    969de95cb200233a860f19b0d864e1a840ef6346a0fdf5cf6bf6c97a1abc814c

  • SHA512

    6a0a7291f49e59b81f0f3c09f1e756d55f2b10d383fb753c8a9c1c1d1ff549d15d1a6424418f0b52f4efbca0e03440b0952e1705e8df4f8351287ce26bdbf8cd

  • SSDEEP

    3072:gVFYqRF4IPEGU+itZFtVVd0H1N3oE6f0bUVwnTyf61Q2G6U9eSSHnnRuaGc:grZi3Ftp0HcE6cbnnTza2sern

Malware Config

Extracted

Family

smokeloader

Botnet

pub1

Extracted

Family

smokeloader

Version

2022

C2

http://gudintas.at/tmp/

http://pik96.ru/tmp/

http://rosatiauto.com/tmp/

http://kingpirate.ru/tmp/

rc4.i32
rc4.i32

Targets

    • Target

      06f3c31343921c5f63bc0803569db1a31f0ecdf6029f167dcc234754eabacc9b.exe

    • Size

      268KB

    • MD5

      ec3bd9d34fd06a8e83cb2a003e59a0eb

    • SHA1

      097a9f9fa54e0e6deefb394c5d8fbf2f3b94b7a7

    • SHA256

      06f3c31343921c5f63bc0803569db1a31f0ecdf6029f167dcc234754eabacc9b

    • SHA512

      4a07bebf79d47a817de90f4c58cd7488da55d56308c53a681eb8e87a99f1cc1c137162393baba598f4c871942ccd32b03c5e167afcb167783222c97899fb5aa4

    • SSDEEP

      6144:/2LuX8E/d2ltBWWIQ8CK95boCsh+eY24b:/LP/dwmWIQzKfoCaC

MITRE ATT&CK Enterprise v15

Tasks