General

  • Target

    d688bb85d3b1e61d441f697d36060baf

  • Size

    335KB

  • Sample

    231228-lm5gqsfgfr

  • MD5

    d688bb85d3b1e61d441f697d36060baf

  • SHA1

    6c3bd9f51d551cb4530cd74fb925d2588eba7109

  • SHA256

    5232bb10cb0b8adbeedb81f5b33cb0911590370e07f792a54dde24fb23b17b65

  • SHA512

    e45d9bf2a85136a83ce7dd86dd4187ff0f92accf240bcd385fbd7f462e4d18f48234436ae7145952eaba88613284dbe995c72defbe5764a86626c94adbda9a6c

  • SSDEEP

    3072:yFgvDEHuNjoFkBUJ0wQ2UHxEUZGg7btm82yls2Lh5JFpb0xhujK/oYotlB2n+q1:yFeDEHzF8UJrbKVZRs2BTSujK/WlB2

Malware Config

Extracted

Family

smokeloader

Botnet

pub3

Extracted

Family

smokeloader

Version

2020

C2

http://aucmoney.com/upload/

http://thegymmum.com/upload/

http://atvcampingtrips.com/upload/

http://kuapakualaman.com/upload/

http://renatazarazua.com/upload/

http://nasufmutlu.com/upload/

rc4.i32
rc4.i32

Targets

    • Target

      d688bb85d3b1e61d441f697d36060baf

    • Size

      335KB

    • MD5

      d688bb85d3b1e61d441f697d36060baf

    • SHA1

      6c3bd9f51d551cb4530cd74fb925d2588eba7109

    • SHA256

      5232bb10cb0b8adbeedb81f5b33cb0911590370e07f792a54dde24fb23b17b65

    • SHA512

      e45d9bf2a85136a83ce7dd86dd4187ff0f92accf240bcd385fbd7f462e4d18f48234436ae7145952eaba88613284dbe995c72defbe5764a86626c94adbda9a6c

    • SSDEEP

      3072:yFgvDEHuNjoFkBUJ0wQ2UHxEUZGg7btm82yls2Lh5JFpb0xhujK/oYotlB2n+q1:yFeDEHzF8UJrbKVZRs2BTSujK/WlB2

MITRE ATT&CK Enterprise v15

Tasks