Overview

overview

10

Static

static

3

9eabf4c63e...fd.exe

windows7-x64

10

9eabf4c63e...fd.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    a88bebdd4b9cc305e093b8d4dca3e61f8f289ee0ddf3ef43b596b9906e1823ab

  • Size

    157KB

  • Sample

    240417-r9x9tsda65

  • MD5

    a422f3b6e007455ffb1e1fb258767190

  • SHA1

    c2fd4cbf94de5bd564d162657ec1418299d90b3b

  • SHA256

    a88bebdd4b9cc305e093b8d4dca3e61f8f289ee0ddf3ef43b596b9906e1823ab

  • SHA512

    3f68a747b3f17f41984274468214bac52a993c283f8574be11269a873c78849911889692808779cb3653c6115a6688a375bb26c02e0b9fc18d3ab8ea2fd313d2

  • SSDEEP

    3072:1+9Fz1pJzww6GAE/zKmRpcSQTHkoRZtYGfR6a2/S8RDNU6:09pJ0w6+zKSS1Ztb6aI66

Score
10/10
smokeloaderpub2backdoortrojan

Malware Config

Extracted

Family

smokeloader

Botnet

pub2

Extracted

Family

smokeloader

Version

2022

C2

http://gxutc2c.com/tmp/index.php

http://proekt8.ru/tmp/index.php

http://mth.com.ua/tmp/index.php

http://pirateking.online/tmp/index.php

http://piratia.pw/tmp/index.php

http://go-piratia.ru/tmp/index.php
rc4.i32
rc4.i32

Targets

    • Target

      9eabf4c63eb61d6f57d39f04f1cef92117318a04731b8f61f6139d1600d092fd.exe

    • Size

      251KB

    • MD5

      83fc58bf7eeea13c8750e29db4859609

    • SHA1

      c7bcdc80a1aa469f5d41215bdfa60a0437645936

    • SHA256

      9eabf4c63eb61d6f57d39f04f1cef92117318a04731b8f61f6139d1600d092fd

    • SHA512

      c0b9ed5d9b21ccdf915c20e6319dff7698e9ef5b705166f1a8696adad86ac58f0c09cf4b186d07a96d38f221ee5a7b5e0eb6102ff6a226b0457dc521f6c0dddf

    • SSDEEP

      3072:NBQWCIDLD4XfZehN+5EmJi6nt+xVby3PVPKUXQZM/YfwbG6nSRIRETsFTWmBYBXs:NhbLDK2Ny5Ey/VKUOMQoBnGQWmWBj2

    Score
    10/10
    smokeloaderpub2backdoortrojan
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

1
T1012

Peripheral Device Discovery

1
T1120

System Information Discovery

1
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks