General

  • Target

    5eff7e99184b9c8352125aaf8aa9d72e33049c52dc4eb7a69d509da3e7004cb2exe.exe

  • Size

    294KB

  • Sample

    240107-x2m2saccgm

  • MD5

    78674b261fbad461ebb0375ccae004b6

  • SHA1

    34cd2e8ff2528e3b766e0da7c08102c0bcee638c

  • SHA256

    5eff7e99184b9c8352125aaf8aa9d72e33049c52dc4eb7a69d509da3e7004cb2

  • SHA512

    f54f0b9378f83860d36719dcde8801262c8986ceec363d75b3bbfbff0e152625bf5c7b3a937d7653bb09d6deaf042550d9a82e35cab0ff3572b1b0277790a831

  • SSDEEP

    3072:T5L0JSLyaD0HSBi4IGVHzg3zS3lc6WR4dGKrUi6zFMTc8a6G5jv2/8R8ZreJXMfH:yyBiVUTa6WR/KrmzFMIX6GlA8Rsow

Malware Config

Extracted

Family

smokeloader

Botnet

pub3

Extracted

Family

smokeloader

Version

2020

C2

http://directorycart.com/upload/

http://tierzahnarzt.at/upload/

http://streetofcards.com/upload/

http://ycdfzd.com/upload/

http://successcoachceo.com/upload/

http://uhvu.cn/upload/

http://japanarticle.com/upload/

rc4.i32
rc4.i32

Targets

    • Target

      5eff7e99184b9c8352125aaf8aa9d72e33049c52dc4eb7a69d509da3e7004cb2exe.exe

    • Size

      294KB

    • MD5

      78674b261fbad461ebb0375ccae004b6

    • SHA1

      34cd2e8ff2528e3b766e0da7c08102c0bcee638c

    • SHA256

      5eff7e99184b9c8352125aaf8aa9d72e33049c52dc4eb7a69d509da3e7004cb2

    • SHA512

      f54f0b9378f83860d36719dcde8801262c8986ceec363d75b3bbfbff0e152625bf5c7b3a937d7653bb09d6deaf042550d9a82e35cab0ff3572b1b0277790a831

    • SSDEEP

      3072:T5L0JSLyaD0HSBi4IGVHzg3zS3lc6WR4dGKrUi6zFMTc8a6G5jv2/8R8ZreJXMfH:yyBiVUTa6WR/KrmzFMIX6GlA8Rsow

MITRE ATT&CK Enterprise v15

Tasks