Overview

overview

10

Static

static

3

d15c9442e7...xe.exe

windows7-x64

10

d15c9442e7...xe.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    d15c9442e73cf3d19521b0ff931fb2c8a557bd00441ee4e8d816d91273ea2ec7exe.exe

  • Size

    302KB

  • Sample

    231207-x7acwaeg65

  • MD5

    c08b4738c12c525f6b311aa777bf416c

  • SHA1

    19af10a3f1efdb985e34a98f662de5a55fe2c020

  • SHA256

    d15c9442e73cf3d19521b0ff931fb2c8a557bd00441ee4e8d816d91273ea2ec7

  • SHA512

    5bda136a0b3b74d8c81065c7d202845f24f31b83d7b9863b09077b53a2ef8974ddf588c62abaea6e7c43336db344827d7509c7a6033b746a876ff9b9d9c2667b

  • SSDEEP

    1536:qOI+XsRq+POIH/Oji3W7/1dJ1Lr/JsFY3RCgKh/1GbohQPkJxJ/A67UKjZ5vW0vU:NID5Wg+/3PWeBmF6ewCt5E7Vdb9r/+

Score
10/10
smokeloaderpub4backdoortrojan

Malware Config

Extracted

Family

smokeloader

Botnet

pub4

Extracted

Family

smokeloader

Version

2022

C2

http://humydrole.com/tmp/index.php

http://trunk-co.ru/tmp/index.php

http://weareelight.com/tmp/index.php

http://pirateking.online/tmp/index.php

http://piratia.pw/tmp/index.php

http://go-piratia.ru/tmp/index.php
rc4.i32
rc4.i32

Targets

    • Target

      d15c9442e73cf3d19521b0ff931fb2c8a557bd00441ee4e8d816d91273ea2ec7exe.exe

    • Size

      302KB

    • MD5

      c08b4738c12c525f6b311aa777bf416c

    • SHA1

      19af10a3f1efdb985e34a98f662de5a55fe2c020

    • SHA256

      d15c9442e73cf3d19521b0ff931fb2c8a557bd00441ee4e8d816d91273ea2ec7

    • SHA512

      5bda136a0b3b74d8c81065c7d202845f24f31b83d7b9863b09077b53a2ef8974ddf588c62abaea6e7c43336db344827d7509c7a6033b746a876ff9b9d9c2667b

    • SSDEEP

      1536:qOI+XsRq+POIH/Oji3W7/1dJ1Lr/JsFY3RCgKh/1GbohQPkJxJ/A67UKjZ5vW0vU:NID5Wg+/3PWeBmF6ewCt5E7Vdb9r/+

    Score
    10/10
    smokeloaderpub4backdoortrojan
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

2
T1012

Peripheral Device Discovery

1
T1120

System Information Discovery

1
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks