General

  • Target

    878b9453053e9f577409c80b3f62aa772162c9138ce9cfcc6cfbd59a074e1e70

  • Size

    305KB

  • Sample

    230924-1ycnesbc97

  • MD5

    77896d2d72a6bacaca4384f46a89e2eb

  • SHA1

    b7e194f17d7e7510ff5d787e34f9fb75c2b86fc1

  • SHA256

    878b9453053e9f577409c80b3f62aa772162c9138ce9cfcc6cfbd59a074e1e70

  • SHA512

    fa2f663f06fbad69062e44a471a236e5a268fe6776eb5eceaeadc48f47937601466571b88e2e0fa3525aeeeffcb8c0b561d2b22e30086947b2544b3e8fef4b5b

  • SSDEEP

    6144:oIX0jgaPV/7drqQC0wzYzqRtPuTos0U2:oLMa9/7w0WWqRJcf

Malware Config

Extracted

Family

smokeloader

Botnet

pub1

Extracted

Family

smokeloader

Version

2020

C2

http://host-file-host6.com/

http://host-host-file8.com/

rc4.i32
rc4.i32

Targets

    • Target

      878b9453053e9f577409c80b3f62aa772162c9138ce9cfcc6cfbd59a074e1e70

    • Size

      305KB

    • MD5

      77896d2d72a6bacaca4384f46a89e2eb

    • SHA1

      b7e194f17d7e7510ff5d787e34f9fb75c2b86fc1

    • SHA256

      878b9453053e9f577409c80b3f62aa772162c9138ce9cfcc6cfbd59a074e1e70

    • SHA512

      fa2f663f06fbad69062e44a471a236e5a268fe6776eb5eceaeadc48f47937601466571b88e2e0fa3525aeeeffcb8c0b561d2b22e30086947b2544b3e8fef4b5b

    • SSDEEP

      6144:oIX0jgaPV/7drqQC0wzYzqRtPuTos0U2:oLMa9/7w0WWqRJcf

MITRE ATT&CK Enterprise v15

Tasks