General

  • Target

    3e426457b7d750e038d399c99afa1ea8a75c21ec18e376702af0b25951f9a2fa

  • Size

    211KB

  • Sample

    230922-s8rakaha6x

  • MD5

    558064602651bb656d5b4d51d8499739

  • SHA1

    f26eb27c4c7057e43e246faf0d66c63badfafef8

  • SHA256

    3e426457b7d750e038d399c99afa1ea8a75c21ec18e376702af0b25951f9a2fa

  • SHA512

    0578a27a2a5ca8a0d1ff30b6490b010c2b019ec872de7bd0efb6ec4688482dafee95bbbfcda4bdf4d8b7a1b0cbecdf7bb4cd6545fa9544de186b328da0ccd402

  • SSDEEP

    3072:PXJAEziPS8H3TTd2C3xk4PQbKcocHxpIVI51KOfUhz:/yEe6gDT8OfPrBcMVYKC

Malware Config

Extracted

Family

smokeloader

Botnet

pub1

Extracted

Family

smokeloader

Version

2020

C2

http://host-file-host6.com/

http://host-host-file8.com/

rc4.i32
rc4.i32

Targets

    • Target

      3e426457b7d750e038d399c99afa1ea8a75c21ec18e376702af0b25951f9a2fa

    • Size

      211KB

    • MD5

      558064602651bb656d5b4d51d8499739

    • SHA1

      f26eb27c4c7057e43e246faf0d66c63badfafef8

    • SHA256

      3e426457b7d750e038d399c99afa1ea8a75c21ec18e376702af0b25951f9a2fa

    • SHA512

      0578a27a2a5ca8a0d1ff30b6490b010c2b019ec872de7bd0efb6ec4688482dafee95bbbfcda4bdf4d8b7a1b0cbecdf7bb4cd6545fa9544de186b328da0ccd402

    • SSDEEP

      3072:PXJAEziPS8H3TTd2C3xk4PQbKcocHxpIVI51KOfUhz:/yEe6gDT8OfPrBcMVYKC

MITRE ATT&CK Enterprise v15

Tasks