General

  • Target

    8bf045ea729f19fbdb48fb119dfeadf0e3d77ece8ff5b72140b6badac09b392e

  • Size

    321KB

  • Sample

    230923-rpqdgsgc5t

  • MD5

    bb0b7537510aed6d81e8e487dc0a0c10

  • SHA1

    09231a399a4deeffbacb56bbc30709e01b1e93fe

  • SHA256

    8bf045ea729f19fbdb48fb119dfeadf0e3d77ece8ff5b72140b6badac09b392e

  • SHA512

    f57cd3b64efca452486b35ba956bc16dc41d8bc49a6adaf6f11b665d877d482e2e249fa66248edfd17a7c621a831c39f6c33a8ae748e3231e262d8162921c417

  • SSDEEP

    3072:4J3zeqhT3jkb0ol++/PxWODDmK3iZ1YZsCaH08s7AoWFgfbLcrtJ4B:K3zrhrjkbLvnxNCKShCa10AoWev

Malware Config

Extracted

Family

smokeloader

Botnet

pub1

Extracted

Family

smokeloader

Version

2020

C2

http://host-file-host6.com/

http://host-host-file8.com/

rc4.i32
rc4.i32

Targets

    • Target

      8bf045ea729f19fbdb48fb119dfeadf0e3d77ece8ff5b72140b6badac09b392e

    • Size

      321KB

    • MD5

      bb0b7537510aed6d81e8e487dc0a0c10

    • SHA1

      09231a399a4deeffbacb56bbc30709e01b1e93fe

    • SHA256

      8bf045ea729f19fbdb48fb119dfeadf0e3d77ece8ff5b72140b6badac09b392e

    • SHA512

      f57cd3b64efca452486b35ba956bc16dc41d8bc49a6adaf6f11b665d877d482e2e249fa66248edfd17a7c621a831c39f6c33a8ae748e3231e262d8162921c417

    • SSDEEP

      3072:4J3zeqhT3jkb0ol++/PxWODDmK3iZ1YZsCaH08s7AoWFgfbLcrtJ4B:K3zrhrjkbLvnxNCKShCa10AoWev

MITRE ATT&CK Enterprise v15

Tasks