General

  • Target

    d8bf617cbe4d578d98af070bdd8ec8ffb1d9ac0d70b0f56d2ad020cb7eeab83b

  • Size

    201KB

  • Sample

    230921-dlwjface7w

  • MD5

    b27bd9cd4531e44137483d5b1b2c194d

  • SHA1

    47bbd45fdfe1828baa4e12df162cae7474169482

  • SHA256

    d8bf617cbe4d578d98af070bdd8ec8ffb1d9ac0d70b0f56d2ad020cb7eeab83b

  • SHA512

    2010c49ff0cc0463d8b48c9856ea877646cffe150c1aa74e191e637cc1206e763476e702700ff53dbfeb0d05324d412983f9fb15b0e4d408cb0afecb16adb013

  • SSDEEP

    3072:qjXWIHqfTE9d4CIvUHb4t8EVUx9tBKVxalZP5bWO5uLmR:slHe0VfHU8EKx97KVolrbKL

Malware Config

Extracted

Family

smokeloader

Botnet

pub1

Extracted

Family

smokeloader

Version

2020

C2

http://host-file-host6.com/

http://host-host-file8.com/

rc4.i32
rc4.i32

Targets

    • Target

      d8bf617cbe4d578d98af070bdd8ec8ffb1d9ac0d70b0f56d2ad020cb7eeab83b

    • Size

      201KB

    • MD5

      b27bd9cd4531e44137483d5b1b2c194d

    • SHA1

      47bbd45fdfe1828baa4e12df162cae7474169482

    • SHA256

      d8bf617cbe4d578d98af070bdd8ec8ffb1d9ac0d70b0f56d2ad020cb7eeab83b

    • SHA512

      2010c49ff0cc0463d8b48c9856ea877646cffe150c1aa74e191e637cc1206e763476e702700ff53dbfeb0d05324d412983f9fb15b0e4d408cb0afecb16adb013

    • SSDEEP

      3072:qjXWIHqfTE9d4CIvUHb4t8EVUx9tBKVxalZP5bWO5uLmR:slHe0VfHU8EKx97KVolrbKL

MITRE ATT&CK Enterprise v15

Tasks