General

  • Target

    6df1611a8651ed7962aea076f57beb6bd287aa4f76256351a8003701b279cddf

  • Size

    187KB

  • Sample

    230922-3m72ascg84

  • MD5

    5b7ad6644a6bede046dd6f6b2aeac36c

  • SHA1

    82d18227df81de2a77ba60359a16ca64c36a7fee

  • SHA256

    6df1611a8651ed7962aea076f57beb6bd287aa4f76256351a8003701b279cddf

  • SHA512

    cef3ede9801521424d5ce1f6e679ee83c72fbd273ad6d3474a17c9a55ca3f178aa677684f23d0da54d0ca0251e03b32927675002a95f7e1f3c9f7ae739aa08bd

  • SSDEEP

    3072:IKNP7pPaE389qpI4CO+SwknMBPNsDmE5HmOk0V/Mxr5lpSHYz:IcP7pPJzC4COqe7nk0JMxbpSH

Malware Config

Extracted

Family

smokeloader

Botnet

pub1

Extracted

Family

smokeloader

Version

2020

C2

http://host-file-host6.com/

http://host-host-file8.com/

rc4.i32
rc4.i32

Targets

    • Target

      6df1611a8651ed7962aea076f57beb6bd287aa4f76256351a8003701b279cddf

    • Size

      187KB

    • MD5

      5b7ad6644a6bede046dd6f6b2aeac36c

    • SHA1

      82d18227df81de2a77ba60359a16ca64c36a7fee

    • SHA256

      6df1611a8651ed7962aea076f57beb6bd287aa4f76256351a8003701b279cddf

    • SHA512

      cef3ede9801521424d5ce1f6e679ee83c72fbd273ad6d3474a17c9a55ca3f178aa677684f23d0da54d0ca0251e03b32927675002a95f7e1f3c9f7ae739aa08bd

    • SSDEEP

      3072:IKNP7pPaE389qpI4CO+SwknMBPNsDmE5HmOk0V/Mxr5lpSHYz:IcP7pPJzC4COqe7nk0JMxbpSH

MITRE ATT&CK Enterprise v15

Tasks