General

  • Target

    f0659054cb13ab88840c2f1a57801047f94107a0cbaa81243562a88d0c9a9db5

  • Size

    211KB

  • Sample

    230922-pqra3ahh49

  • MD5

    62af6b97500284381cc7e5c3898febc5

  • SHA1

    3a5d84698f124febdd75bff683b59b4c7952b632

  • SHA256

    f0659054cb13ab88840c2f1a57801047f94107a0cbaa81243562a88d0c9a9db5

  • SHA512

    135d7dd593d96fbdadcecff8bbad19b040c58e9378a79cbbe2f31acf16547dabe8986a283f3bab73eb124a8848ecc3cc9af4b101b5d1142c65876f99a991f699

  • SSDEEP

    3072:OXykyagapwl24UiMSNNp27hPZ5QnEUa5FsOo+gzYXk:WdggK24GamVPrKTqsOhH

Malware Config

Extracted

Family

smokeloader

Botnet

pub1

Extracted

Family

smokeloader

Version

2020

C2

http://host-file-host6.com/

http://host-host-file8.com/

rc4.i32
rc4.i32

Targets

    • Target

      f0659054cb13ab88840c2f1a57801047f94107a0cbaa81243562a88d0c9a9db5

    • Size

      211KB

    • MD5

      62af6b97500284381cc7e5c3898febc5

    • SHA1

      3a5d84698f124febdd75bff683b59b4c7952b632

    • SHA256

      f0659054cb13ab88840c2f1a57801047f94107a0cbaa81243562a88d0c9a9db5

    • SHA512

      135d7dd593d96fbdadcecff8bbad19b040c58e9378a79cbbe2f31acf16547dabe8986a283f3bab73eb124a8848ecc3cc9af4b101b5d1142c65876f99a991f699

    • SSDEEP

      3072:OXykyagapwl24UiMSNNp27hPZ5QnEUa5FsOo+gzYXk:WdggK24GamVPrKTqsOhH

MITRE ATT&CK Enterprise v15

Tasks