General

  • Target

    b46ca6b63b5c418471e737ff53381b4a58bc2f501f947778fa96a9cbee5ffb8f

  • Size

    179KB

  • Sample

    240305-l2y89sda56

  • MD5

    b2434ffb0aca7870770fd9c4a5f3f204

  • SHA1

    0504533f60e299a1b13651e298594ef661fd6e88

  • SHA256

    b46ca6b63b5c418471e737ff53381b4a58bc2f501f947778fa96a9cbee5ffb8f

  • SHA512

    d184f450e0e5355414553d7c7c768cb7cb7acf703f654da7242c304916e85355ad4bf512bbc61fd7611c90bbaa642038e20a745e2c91cd88b70977ab66b25d0b

  • SSDEEP

    3072:5i4qNGTL5El1wnZDqc9JhXu7JZOZ440WWX4/Uk5Fqse:04qgTLu3wnZN9JhXu1ZO6DWs4R4s

Malware Config

Extracted

Family

smokeloader

Botnet

pub1

Extracted

Family

smokeloader

Version

2022

C2

http://gxutc2c.com/tmp/index.php

http://proekt8.ru/tmp/index.php

http://mth.com.ua/tmp/index.php

http://pirateking.online/tmp/index.php

http://piratia.pw/tmp/index.php

http://go-piratia.ru/tmp/index.php

rc4.i32
rc4.i32

Targets

    • Target

      b46ca6b63b5c418471e737ff53381b4a58bc2f501f947778fa96a9cbee5ffb8f

    • Size

      179KB

    • MD5

      b2434ffb0aca7870770fd9c4a5f3f204

    • SHA1

      0504533f60e299a1b13651e298594ef661fd6e88

    • SHA256

      b46ca6b63b5c418471e737ff53381b4a58bc2f501f947778fa96a9cbee5ffb8f

    • SHA512

      d184f450e0e5355414553d7c7c768cb7cb7acf703f654da7242c304916e85355ad4bf512bbc61fd7611c90bbaa642038e20a745e2c91cd88b70977ab66b25d0b

    • SSDEEP

      3072:5i4qNGTL5El1wnZDqc9JhXu7JZOZ440WWX4/Uk5Fqse:04qgTLu3wnZN9JhXu1ZO6DWs4R4s

MITRE ATT&CK Enterprise v15

Tasks