General

  • Target

    356e01a3856916d347882070b6d627a70c19efd04c8ea2a1e652351fd03af7d5

  • Size

    166KB

  • Sample

    240305-wj1dqaea38

  • MD5

    d077462f47edaaa08bed429d54b23916

  • SHA1

    209da7f958421c78c9fb3cecfc04d25882be748e

  • SHA256

    356e01a3856916d347882070b6d627a70c19efd04c8ea2a1e652351fd03af7d5

  • SHA512

    789cbbd1158da6ab547f48596f4e580f0642cfc88cdb90d08fddec6a66a01eeb9d187cbd54418b3c71394704ec02e568931516043b55f341ee417bb9d103fb5f

  • SSDEEP

    3072:drMNEu+zQXKasVaEeCrVQOq9Ng7dbv1k6q:dQNEp3V8NghD+f

Malware Config

Extracted

Family

smokeloader

Botnet

pub1

Extracted

Family

smokeloader

Version

2022

C2

http://kamsmad.com/tmp/index.php

http://souzhensil.ru/tmp/index.php

http://teplokub.com.ua/tmp/index.php

rc4.i32
rc4.i32

Targets

    • Target

      356e01a3856916d347882070b6d627a70c19efd04c8ea2a1e652351fd03af7d5

    • Size

      166KB

    • MD5

      d077462f47edaaa08bed429d54b23916

    • SHA1

      209da7f958421c78c9fb3cecfc04d25882be748e

    • SHA256

      356e01a3856916d347882070b6d627a70c19efd04c8ea2a1e652351fd03af7d5

    • SHA512

      789cbbd1158da6ab547f48596f4e580f0642cfc88cdb90d08fddec6a66a01eeb9d187cbd54418b3c71394704ec02e568931516043b55f341ee417bb9d103fb5f

    • SSDEEP

      3072:drMNEu+zQXKasVaEeCrVQOq9Ng7dbv1k6q:dQNEp3V8NghD+f

MITRE ATT&CK Enterprise v15

Tasks