General

  • Target

    fe (2).exe

  • Size

    174KB

  • Sample

    240312-z4ngfada54

  • MD5

    6252a112e0b7ec864abc4005b38d1077

  • SHA1

    24374bebe039057efc1cd4d3a325580757530d2a

  • SHA256

    1bb992ed6e0b7861afa33bca11cdb13b50dbcedcfd1c9fbb3551fbe805d795db

  • SHA512

    e66c5f0a905abdebfed899b4ee9461bba10a54b940ca3218d31b89edc5bb6b990ab86873ec5dbf47d1e594cfb9a817ec733a6561e60e2a2c6491ac57b19ea4a9

  • SSDEEP

    3072:gkr1JIfwsyQrS6etWIrUubCSH/WSAR3sjD9:gkrkfw3QZmWIrUueSUR3sjD

Malware Config

Extracted

Family

smokeloader

Botnet

pub1

Extracted

Family

smokeloader

Version

2022

C2

http://nidoe.org/tmp/index.php

http://sodez.ru/tmp/index.php

http://uama.com.ua/tmp/index.php

http://talesofpirates.net/tmp/index.php

rc4.i32
rc4.i32

Targets

    • Target

      fe (2).exe

    • Size

      174KB

    • MD5

      6252a112e0b7ec864abc4005b38d1077

    • SHA1

      24374bebe039057efc1cd4d3a325580757530d2a

    • SHA256

      1bb992ed6e0b7861afa33bca11cdb13b50dbcedcfd1c9fbb3551fbe805d795db

    • SHA512

      e66c5f0a905abdebfed899b4ee9461bba10a54b940ca3218d31b89edc5bb6b990ab86873ec5dbf47d1e594cfb9a817ec733a6561e60e2a2c6491ac57b19ea4a9

    • SSDEEP

      3072:gkr1JIfwsyQrS6etWIrUubCSH/WSAR3sjD9:gkrkfw3QZmWIrUueSUR3sjD

MITRE ATT&CK Enterprise v15

Tasks