General

  • Target

    e9c2acffbe5648af59592af647b8adf0965040d18489433891f9b2be31c6007f

  • Size

    307KB

  • Sample

    230924-zt1n1sbb66

  • MD5

    6f47c13cc6606cb214ae29834fdcf801

  • SHA1

    52ab3cae73ea11876be444832dad5f14618418e9

  • SHA256

    e9c2acffbe5648af59592af647b8adf0965040d18489433891f9b2be31c6007f

  • SHA512

    76e93fcad477890310872f1a690d3f390acc75b6d543bef89c381427113979920ea553876726e0c7b187a1e3d403d4922b9ecf327efa537745fb6e2f291c8edc

  • SSDEEP

    3072:xafPR0VhhawHnoQ6DG7nfmfLBkgkqgYk6xKeh1xnGXy47JX:UfZ0zhawHnH7nfokgkekQK+1xnT

Malware Config

Extracted

Family

smokeloader

Botnet

pub1

Extracted

Family

smokeloader

Version

2020

C2

http://host-file-host6.com/

http://host-host-file8.com/

rc4.i32
rc4.i32

Targets

    • Target

      e9c2acffbe5648af59592af647b8adf0965040d18489433891f9b2be31c6007f

    • Size

      307KB

    • MD5

      6f47c13cc6606cb214ae29834fdcf801

    • SHA1

      52ab3cae73ea11876be444832dad5f14618418e9

    • SHA256

      e9c2acffbe5648af59592af647b8adf0965040d18489433891f9b2be31c6007f

    • SHA512

      76e93fcad477890310872f1a690d3f390acc75b6d543bef89c381427113979920ea553876726e0c7b187a1e3d403d4922b9ecf327efa537745fb6e2f291c8edc

    • SSDEEP

      3072:xafPR0VhhawHnoQ6DG7nfmfLBkgkqgYk6xKeh1xnGXy47JX:UfZ0zhawHnH7nfokgkekQK+1xnT

MITRE ATT&CK Enterprise v15

Tasks