General

  • Target

    c479139a30359671d7bc7223041a919f7cbed78b3d4c88d79a7dee86b250cf16

  • Size

    254KB

  • Sample

    240226-ce7gpaab77

  • MD5

    5adadb406506c65f0a8c5387a50fc31a

  • SHA1

    db45bd3ee8a0ef0690d04fbf2575049a2dc9ad01

  • SHA256

    c479139a30359671d7bc7223041a919f7cbed78b3d4c88d79a7dee86b250cf16

  • SHA512

    1abac2943735cba089177c69928a5dc48e64d296a9b25424edc299009d9423e8c19ef5cfd1f1d763cbd0ebac73b2bc0a2ca57863624cccff2674e104411b8085

  • SSDEEP

    3072:Nl6mR5pZ1b2ElMKtcoyNM2NfEM1OnnSXMv5JHZTz:TXpZR9hCoYxDmnS05T

Malware Config

Extracted

Family

smokeloader

Botnet

pub3

Extracted

Family

smokeloader

Version

2022

C2

http://kamsmad.com/tmp/index.php

http://souzhensil.ru/tmp/index.php

http://teplokub.com.ua/tmp/index.php

rc4.i32
rc4.i32

Targets

    • Target

      c479139a30359671d7bc7223041a919f7cbed78b3d4c88d79a7dee86b250cf16

    • Size

      254KB

    • MD5

      5adadb406506c65f0a8c5387a50fc31a

    • SHA1

      db45bd3ee8a0ef0690d04fbf2575049a2dc9ad01

    • SHA256

      c479139a30359671d7bc7223041a919f7cbed78b3d4c88d79a7dee86b250cf16

    • SHA512

      1abac2943735cba089177c69928a5dc48e64d296a9b25424edc299009d9423e8c19ef5cfd1f1d763cbd0ebac73b2bc0a2ca57863624cccff2674e104411b8085

    • SSDEEP

      3072:Nl6mR5pZ1b2ElMKtcoyNM2NfEM1OnnSXMv5JHZTz:TXpZR9hCoYxDmnS05T

MITRE ATT&CK Enterprise v15

Tasks