Resubmissions

13-02-2024 00:43

240213-a2wycsgh57 10

12-02-2024 04:50

240212-fgplfadc73 10

General

  • Target

    2867629034ad3756930e22f7c88160253e84db1925821f1b214848feee03db10

  • Size

    225KB

  • Sample

    240213-a2wycsgh57

  • MD5

    f123a3c55ee8045dfcf54a8693b0110c

  • SHA1

    b3ab0c7093b0c310e4c8d42a567612acaf76db5c

  • SHA256

    2867629034ad3756930e22f7c88160253e84db1925821f1b214848feee03db10

  • SHA512

    341da20b5ca67dcbb679471656d5ec2e4ffa40b8c1e20b47eb4bb99b311c8e671a2a18a6c55c883b32a7b86910d8c3b9f2ab9b2c1861db1753e26d733f5c4191

  • SSDEEP

    3072:Z+cb+DkUDfglo9lKQgkdBxuKQn2Y5SEsvda5XMmA5yuTDPW:3kku3xg2Y5SEaadFY

Malware Config

Extracted

Family

smokeloader

Botnet

pub3

Extracted

Family

smokeloader

Version

2022

C2

http://sjyey.com/tmp/index.php

http://babonwo.ru/tmp/index.php

http://mth.com.ua/tmp/index.php

http://piratia.pw/tmp/index.php

http://go-piratia.ru/tmp/index.php

rc4.i32
rc4.i32

Targets

    • Target

      2867629034ad3756930e22f7c88160253e84db1925821f1b214848feee03db10

    • Size

      225KB

    • MD5

      f123a3c55ee8045dfcf54a8693b0110c

    • SHA1

      b3ab0c7093b0c310e4c8d42a567612acaf76db5c

    • SHA256

      2867629034ad3756930e22f7c88160253e84db1925821f1b214848feee03db10

    • SHA512

      341da20b5ca67dcbb679471656d5ec2e4ffa40b8c1e20b47eb4bb99b311c8e671a2a18a6c55c883b32a7b86910d8c3b9f2ab9b2c1861db1753e26d733f5c4191

    • SSDEEP

      3072:Z+cb+DkUDfglo9lKQgkdBxuKQn2Y5SEsvda5XMmA5yuTDPW:3kku3xg2Y5SEaadFY

MITRE ATT&CK Enterprise v15

Tasks