General

  • Target

    5b809f3e90f2dc84e3a042ef1f54169331288d600a020e1cc445bd56781514db

  • Size

    305KB

  • Sample

    230924-p8sxlsgf29

  • MD5

    45b35cd3b6d3bf79d6880813ebcf1717

  • SHA1

    95682d6d8d954d837c9503c148f2857c6a9b7ad7

  • SHA256

    5b809f3e90f2dc84e3a042ef1f54169331288d600a020e1cc445bd56781514db

  • SHA512

    8fb925c9d06aa82e05fd9e2a0e84c91a8073088b1d101048363513f114c6d332c9295469e719c2b662aa293824bf527bb42367f85e39e799ae280f4eea5787df

  • SSDEEP

    3072:b1B8qN0Mh5a9v0GO+vlz9/P/6fo7sD1BguZdfkSNtxl4gpkSsMtk0lvS:BB840y5a98G1z9nSTEuPcSNtP4gpk+N

Malware Config

Extracted

Family

smokeloader

Botnet

pub1

Extracted

Family

smokeloader

Version

2020

C2

http://host-file-host6.com/

http://host-host-file8.com/

rc4.i32
rc4.i32

Targets

    • Target

      5b809f3e90f2dc84e3a042ef1f54169331288d600a020e1cc445bd56781514db

    • Size

      305KB

    • MD5

      45b35cd3b6d3bf79d6880813ebcf1717

    • SHA1

      95682d6d8d954d837c9503c148f2857c6a9b7ad7

    • SHA256

      5b809f3e90f2dc84e3a042ef1f54169331288d600a020e1cc445bd56781514db

    • SHA512

      8fb925c9d06aa82e05fd9e2a0e84c91a8073088b1d101048363513f114c6d332c9295469e719c2b662aa293824bf527bb42367f85e39e799ae280f4eea5787df

    • SSDEEP

      3072:b1B8qN0Mh5a9v0GO+vlz9/P/6fo7sD1BguZdfkSNtxl4gpkSsMtk0lvS:BB840y5a98G1z9nSTEuPcSNtP4gpk+N

MITRE ATT&CK Enterprise v15

Tasks