General

  • Target

    56790b203489173c981bb6484f779c80ce952823b94959a864d079acb9ffce27

  • Size

    164KB

  • Sample

    240227-ffjc2age92

  • MD5

    8c08c43f5b1e2f98fd4dd3d4c4398735

  • SHA1

    188e4a7b6dec6ca9db1a04f31d610c5c400b4cbc

  • SHA256

    56790b203489173c981bb6484f779c80ce952823b94959a864d079acb9ffce27

  • SHA512

    a2f20becd04713396d78b296c76e710c0590ac9d61dc01743059cfddf2071184bfa158c84b70dd3d84d6459f84671b7418e543166b8d08d67fe8342089e0bb62

  • SSDEEP

    3072:VrQ3f7CCQDou9jpaSMlw2oUEhTO8xq4OJf148:VruWCQsulpBb1UEhK8xqJn

Malware Config

Extracted

Family

smokeloader

Botnet

pub3

Extracted

Family

smokeloader

Version

2022

C2

http://kamsmad.com/tmp/index.php

http://souzhensil.ru/tmp/index.php

http://teplokub.com.ua/tmp/index.php

rc4.i32
rc4.i32

Targets

    • Target

      56790b203489173c981bb6484f779c80ce952823b94959a864d079acb9ffce27

    • Size

      164KB

    • MD5

      8c08c43f5b1e2f98fd4dd3d4c4398735

    • SHA1

      188e4a7b6dec6ca9db1a04f31d610c5c400b4cbc

    • SHA256

      56790b203489173c981bb6484f779c80ce952823b94959a864d079acb9ffce27

    • SHA512

      a2f20becd04713396d78b296c76e710c0590ac9d61dc01743059cfddf2071184bfa158c84b70dd3d84d6459f84671b7418e543166b8d08d67fe8342089e0bb62

    • SSDEEP

      3072:VrQ3f7CCQDou9jpaSMlw2oUEhTO8xq4OJf148:VruWCQsulpBb1UEhK8xqJn

MITRE ATT&CK Enterprise v15

Tasks