General

  • Target

    6fb44872293183a00b9acdcaf2cee313523611ecf449ecea6f2a198c87ca01ec

  • Size

    244KB

  • Sample

    240226-ccw8yaaa86

  • MD5

    6ecc93082ed0087fd90c9c6caf4bd6f7

  • SHA1

    70066115cb7f419f30952be2e2decac86ba77e4c

  • SHA256

    6fb44872293183a00b9acdcaf2cee313523611ecf449ecea6f2a198c87ca01ec

  • SHA512

    1f34ceb990d088df3a668da23d03e962b6046b7fa130fdcce9761ba76486abe9b4bc19d73492316e5c640736e47f69ebbe8a5ef6fcd85447454c9836d5370c18

  • SSDEEP

    3072:6xJR/YrRmLtCvkW9ZFj1ybsN5xjbmxMFqPfSUXMU5opi7:uJ9wmLIvZyePjyqqPfK0

Malware Config

Extracted

Family

smokeloader

Botnet

pub3

Extracted

Family

smokeloader

Version

2022

C2

http://kamsmad.com/tmp/index.php

http://souzhensil.ru/tmp/index.php

http://teplokub.com.ua/tmp/index.php

rc4.i32
rc4.i32

Targets

    • Target

      6fb44872293183a00b9acdcaf2cee313523611ecf449ecea6f2a198c87ca01ec

    • Size

      244KB

    • MD5

      6ecc93082ed0087fd90c9c6caf4bd6f7

    • SHA1

      70066115cb7f419f30952be2e2decac86ba77e4c

    • SHA256

      6fb44872293183a00b9acdcaf2cee313523611ecf449ecea6f2a198c87ca01ec

    • SHA512

      1f34ceb990d088df3a668da23d03e962b6046b7fa130fdcce9761ba76486abe9b4bc19d73492316e5c640736e47f69ebbe8a5ef6fcd85447454c9836d5370c18

    • SSDEEP

      3072:6xJR/YrRmLtCvkW9ZFj1ybsN5xjbmxMFqPfSUXMU5opi7:uJ9wmLIvZyePjyqqPfK0

MITRE ATT&CK Enterprise v15

Tasks