General

  • Target

    3c2672bb3dc91360f4ddeeb7d36db34354eab8624bff04430649d5b794b0afd1

  • Size

    294KB

  • Sample

    230922-ev3jsach2w

  • MD5

    a429b1cad13b585f8ed0b211cf58c8b1

  • SHA1

    831989747894654676a451e45caad4087b449d43

  • SHA256

    3c2672bb3dc91360f4ddeeb7d36db34354eab8624bff04430649d5b794b0afd1

  • SHA512

    cff50434ba337280c8d66bb53a3df41499bed74a651fd8d6947fb2c091e25d72df0e10ae4b1a64b604bd30751bd128cdc4d618623dabc7421a30845345093045

  • SSDEEP

    6144:PIcpSUbxJ7vc+lC9BmgXotRTO76Jo3g8Z:PIc4KxJ7vpzptOmWQ8

Malware Config

Extracted

Family

smokeloader

Botnet

pub1

Extracted

Family

smokeloader

Version

2022

C2

http://gudintas.at/tmp/

http://pik96.ru/tmp/

http://rosatiauto.com/tmp/

http://kingpirate.ru/tmp/

rc4.i32
rc4.i32

Targets

    • Target

      3c2672bb3dc91360f4ddeeb7d36db34354eab8624bff04430649d5b794b0afd1

    • Size

      294KB

    • MD5

      a429b1cad13b585f8ed0b211cf58c8b1

    • SHA1

      831989747894654676a451e45caad4087b449d43

    • SHA256

      3c2672bb3dc91360f4ddeeb7d36db34354eab8624bff04430649d5b794b0afd1

    • SHA512

      cff50434ba337280c8d66bb53a3df41499bed74a651fd8d6947fb2c091e25d72df0e10ae4b1a64b604bd30751bd128cdc4d618623dabc7421a30845345093045

    • SSDEEP

      6144:PIcpSUbxJ7vc+lC9BmgXotRTO76Jo3g8Z:PIc4KxJ7vpzptOmWQ8

MITRE ATT&CK Enterprise v15

Tasks