General

  • Target

    79a62aa738291f15636bfdd41733c557467f5cc848ab47e0265dc30c34ff73de

  • Size

    191KB

  • Sample

    230923-aydbvaba8z

  • MD5

    05a6b123f8ab7eaaeb40621f079bae87

  • SHA1

    2bebec5327c4411bb975b69cd92457f55111cfd1

  • SHA256

    79a62aa738291f15636bfdd41733c557467f5cc848ab47e0265dc30c34ff73de

  • SHA512

    5be23582b62c25614b6007941520bc751801594ba29617875159a7d588eb1e34e747ef4a5236edf9d5f8c5caa2e20d50a99bc0d50b6356a1673dff5ef0785fa5

  • SSDEEP

    3072:8+4M3I7trc0W0s/gUb0Jj+S5OdV4SxkxaUDIZwG5Vsy:R4M3I7h1W9AJj+SEkxcZ7sy

Malware Config

Extracted

Family

smokeloader

Botnet

pub1

Extracted

Family

smokeloader

Version

2022

C2

http://gudintas.at/tmp/

http://pik96.ru/tmp/

http://rosatiauto.com/tmp/

http://kingpirate.ru/tmp/

rc4.i32
rc4.i32

Targets

    • Target

      79a62aa738291f15636bfdd41733c557467f5cc848ab47e0265dc30c34ff73de

    • Size

      191KB

    • MD5

      05a6b123f8ab7eaaeb40621f079bae87

    • SHA1

      2bebec5327c4411bb975b69cd92457f55111cfd1

    • SHA256

      79a62aa738291f15636bfdd41733c557467f5cc848ab47e0265dc30c34ff73de

    • SHA512

      5be23582b62c25614b6007941520bc751801594ba29617875159a7d588eb1e34e747ef4a5236edf9d5f8c5caa2e20d50a99bc0d50b6356a1673dff5ef0785fa5

    • SSDEEP

      3072:8+4M3I7trc0W0s/gUb0Jj+S5OdV4SxkxaUDIZwG5Vsy:R4M3I7h1W9AJj+SEkxcZ7sy

MITRE ATT&CK Enterprise v15

Tasks