General

  • Target

    5169ecaf2ed669073954f70df96ce6a218a65527e26b877b79f2c3d75475b3e8

  • Size

    253KB

  • Sample

    240226-cbbwlsaa47

  • MD5

    5f838f7e3ad9fde7d90827a4563e07dd

  • SHA1

    e27ac04c88590e97259a7a46b004080b5da6a353

  • SHA256

    5169ecaf2ed669073954f70df96ce6a218a65527e26b877b79f2c3d75475b3e8

  • SHA512

    a7eaf19228cceee04c6242cfeca81b6f06f7d4eed78bc4c3991bac86c629c814569a28728a233c48c8d6a87602487385ed79c317ff3c0a6aa8958b9590e7169a

  • SSDEEP

    3072:jL82RVaMo8qJVYSqjBOmGrK8ZW94lK4vXMs5/DTz:fta3FVBa0mN8E94lrdDT

Malware Config

Extracted

Family

smokeloader

Botnet

pub3

Extracted

Family

smokeloader

Version

2022

C2

http://kamsmad.com/tmp/index.php

http://souzhensil.ru/tmp/index.php

http://teplokub.com.ua/tmp/index.php

rc4.i32
rc4.i32

Targets

    • Target

      5169ecaf2ed669073954f70df96ce6a218a65527e26b877b79f2c3d75475b3e8

    • Size

      253KB

    • MD5

      5f838f7e3ad9fde7d90827a4563e07dd

    • SHA1

      e27ac04c88590e97259a7a46b004080b5da6a353

    • SHA256

      5169ecaf2ed669073954f70df96ce6a218a65527e26b877b79f2c3d75475b3e8

    • SHA512

      a7eaf19228cceee04c6242cfeca81b6f06f7d4eed78bc4c3991bac86c629c814569a28728a233c48c8d6a87602487385ed79c317ff3c0a6aa8958b9590e7169a

    • SSDEEP

      3072:jL82RVaMo8qJVYSqjBOmGrK8ZW94lK4vXMs5/DTz:fta3FVBa0mN8E94lrdDT

MITRE ATT&CK Enterprise v15

Tasks