General

  • Target

    b2d15b3985cd90d2e5273288589f97ac0ed7d46a43d2d85854e9807270280f75

  • Size

    170KB

  • Sample

    240313-ba7ffshh85

  • MD5

    f1152e63f771fd564639e78b6a5ce34d

  • SHA1

    cea271578e5f812e64e4f677c0c8ce86e17db938

  • SHA256

    b2d15b3985cd90d2e5273288589f97ac0ed7d46a43d2d85854e9807270280f75

  • SHA512

    056c929a0721c91c7c2c9f87fae82e61fea61af185584c0c0e370b150caf4c849b1698b39184f26379dc0fecba557e67217b89373df3cb785431f32d6460162a

  • SSDEEP

    1536:KC1LAyewOOYnw7rcPK1xdh9xcG3Ruy5JapwjrgvwG31yfwGcs6dRnbIH4X+:KrwOgrNvh9xZgyXMoI1+16Lbp+

Malware Config

Extracted

Family

smokeloader

Botnet

pub1

Extracted

Family

smokeloader

Version

2022

C2

http://nidoe.org/tmp/index.php

http://sodez.ru/tmp/index.php

http://uama.com.ua/tmp/index.php

http://talesofpirates.net/tmp/index.php

rc4.i32
rc4.i32

Targets

    • Target

      b2d15b3985cd90d2e5273288589f97ac0ed7d46a43d2d85854e9807270280f75

    • Size

      170KB

    • MD5

      f1152e63f771fd564639e78b6a5ce34d

    • SHA1

      cea271578e5f812e64e4f677c0c8ce86e17db938

    • SHA256

      b2d15b3985cd90d2e5273288589f97ac0ed7d46a43d2d85854e9807270280f75

    • SHA512

      056c929a0721c91c7c2c9f87fae82e61fea61af185584c0c0e370b150caf4c849b1698b39184f26379dc0fecba557e67217b89373df3cb785431f32d6460162a

    • SSDEEP

      1536:KC1LAyewOOYnw7rcPK1xdh9xcG3Ruy5JapwjrgvwG31yfwGcs6dRnbIH4X+:KrwOgrNvh9xZgyXMoI1+16Lbp+

MITRE ATT&CK Enterprise v15

Tasks