General

  • Target

    c6a577dbed35a80b872b15f420bc24649ad603c8f6f7580406fead0213db309e

  • Size

    166KB

  • Sample

    240305-ssm8zahh4y

  • MD5

    3be847274905cd27f6b280e30d8aec08

  • SHA1

    82f04de99b974a576117c3e9b22668b88dfcb29b

  • SHA256

    c6a577dbed35a80b872b15f420bc24649ad603c8f6f7580406fead0213db309e

  • SHA512

    ba4047c10d0808f02e0a443c4067d29fd22f926389da51a7bca90c3e42565a85c6f198236ef69419f78a35d48f08f8b1baed2acc833cb1efe8129c49ce6bff7d

  • SSDEEP

    3072:WCRvDItS/Qh0cu9xuKiErSBeYfRHUy6tWnxcfku:W6vDB/Lcu9WErSBegUFWnxc

Malware Config

Extracted

Family

smokeloader

Botnet

pub1

Extracted

Family

smokeloader

Version

2022

C2

http://kamsmad.com/tmp/index.php

http://souzhensil.ru/tmp/index.php

http://teplokub.com.ua/tmp/index.php

rc4.i32
rc4.i32

Targets

    • Target

      c6a577dbed35a80b872b15f420bc24649ad603c8f6f7580406fead0213db309e

    • Size

      166KB

    • MD5

      3be847274905cd27f6b280e30d8aec08

    • SHA1

      82f04de99b974a576117c3e9b22668b88dfcb29b

    • SHA256

      c6a577dbed35a80b872b15f420bc24649ad603c8f6f7580406fead0213db309e

    • SHA512

      ba4047c10d0808f02e0a443c4067d29fd22f926389da51a7bca90c3e42565a85c6f198236ef69419f78a35d48f08f8b1baed2acc833cb1efe8129c49ce6bff7d

    • SSDEEP

      3072:WCRvDItS/Qh0cu9xuKiErSBeYfRHUy6tWnxcfku:W6vDB/Lcu9WErSBegUFWnxc

MITRE ATT&CK Enterprise v15

Tasks