General

  • Target

    file.exe

  • Size

    230KB

  • Sample

    240120-j3tztsfab6

  • MD5

    fc36cb4706fdb9637c9fbda00f1f438b

  • SHA1

    9b41139dd5325c2a6548e3557ae30f3b57f40b3c

  • SHA256

    c086815f53088951955eebb5bdd5329b57c0d7e65980cb8d6ef7b40a18c6b3d8

  • SHA512

    d980483eaa52d66fd7933a02509ac5526326622670f22ee5d97e72a4b64774466629f2af237b960e507b8f170cf4cdd346cc4ac6d238541a369203c8d095c3d8

  • SSDEEP

    3072:+NLrabqLIDByD1MfyqGzK4NmyT7MOP3HcaRnt59Wy4nGFhr5TZTIs:+YuLIDB81BzK4ki7MOP35wst+s

Malware Config

Extracted

Family

smokeloader

Botnet

pub3

Extracted

Family

smokeloader

Version

2022

C2

http://gxutc2c.com/tmp/index.php

http://proekt8.ru/tmp/index.php

http://mth.com.ua/tmp/index.php

http://pirateking.online/tmp/index.php

http://piratia.pw/tmp/index.php

http://go-piratia.ru/tmp/index.php

rc4.i32
rc4.i32

Targets

    • Target

      file.exe

    • Size

      230KB

    • MD5

      fc36cb4706fdb9637c9fbda00f1f438b

    • SHA1

      9b41139dd5325c2a6548e3557ae30f3b57f40b3c

    • SHA256

      c086815f53088951955eebb5bdd5329b57c0d7e65980cb8d6ef7b40a18c6b3d8

    • SHA512

      d980483eaa52d66fd7933a02509ac5526326622670f22ee5d97e72a4b64774466629f2af237b960e507b8f170cf4cdd346cc4ac6d238541a369203c8d095c3d8

    • SSDEEP

      3072:+NLrabqLIDByD1MfyqGzK4NmyT7MOP3HcaRnt59Wy4nGFhr5TZTIs:+YuLIDB81BzK4ki7MOP35wst+s

MITRE ATT&CK Enterprise v15

Tasks