Overview

overview

10

Static

static

3

efed26bfe3...18.exe

windows7-x64

10

efed26bfe3...18.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    efed26bfe33e8da32415c6966a18e0a9_JaffaCakes118

  • Size

    303KB

  • Sample

    240415-bb5m9aac35

  • MD5

    efed26bfe33e8da32415c6966a18e0a9

  • SHA1

    d57def7b7d0d797e5073ca5ae2a7717cbbf6773c

  • SHA256

    e09a88480cf6497bc3478e5302f1529bf07900c596353a3a6c4cf8afd3d6d1cb

  • SHA512

    76d4cc9697ca20fadf1e9499ecf86107532b86b5804fcdce4f22121b3e715e3c2c9cf2a7827359dd4ecf47777dc6ba1b460a7dd507b1c3acc1675d207d695a50

  • SSDEEP

    6144:hTS8YND7lZRR+OMq1wp96hMytQQ3sB66bbr+xILvAqb:c8Yh7lZRxMqrhMytdCbbrIkA

Score
10/10
smokeloaderpub2backdoortrojan

Malware Config

Extracted

Family

smokeloader

Botnet

pub2

Extracted

Family

smokeloader

Version

2020

C2

http://aucmoney.com/upload/

http://thegymmum.com/upload/

http://atvcampingtrips.com/upload/

http://kuapakualaman.com/upload/

http://renatazarazua.com/upload/

http://nasufmutlu.com/upload/
rc4.i32
rc4.i32

Targets

    • Target

      efed26bfe33e8da32415c6966a18e0a9_JaffaCakes118

    • Size

      303KB

    • MD5

      efed26bfe33e8da32415c6966a18e0a9

    • SHA1

      d57def7b7d0d797e5073ca5ae2a7717cbbf6773c

    • SHA256

      e09a88480cf6497bc3478e5302f1529bf07900c596353a3a6c4cf8afd3d6d1cb

    • SHA512

      76d4cc9697ca20fadf1e9499ecf86107532b86b5804fcdce4f22121b3e715e3c2c9cf2a7827359dd4ecf47777dc6ba1b460a7dd507b1c3acc1675d207d695a50

    • SSDEEP

      6144:hTS8YND7lZRR+OMq1wp96hMytQQ3sB66bbr+xILvAqb:c8Yh7lZRxMqrhMytdCbbrIkA

    Score
    10/10
    smokeloaderpub2backdoortrojan
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

2
T1012

Peripheral Device Discovery

1
T1120

System Information Discovery

1
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks