Overview

overview

10

Static

static

3

9966655be2...ed.exe

windows7-x64

10

9966655be2...ed.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    08eaca157779aa32a8373e29e2cdbe4d2f6dde4abfaf9e47bfedb857022b5a61

  • Size

    152KB

  • Sample

    240417-rs4ehsbh85

  • MD5

    24e5131e45c540f5363571bd0797e238

  • SHA1

    be240f29fa26d91d7a8c2d43d2fd1719b47b6ab7

  • SHA256

    08eaca157779aa32a8373e29e2cdbe4d2f6dde4abfaf9e47bfedb857022b5a61

  • SHA512

    b8700cd184e9a04000c23eea2b44edfd379c6dddb027ab158e5d802a61734a139a1c07efc9ee0d125752758ad13818c4d83d7b57f71db76790a0073483dc229d

  • SSDEEP

    3072:xF11EQqLbg65ObszWffuvem98AwVqHNTW+7aRbIm9f3heRvDITv:PgVgErzWcem9mctW+7WbrHTv

Score
10/10
smokeloaderpub1backdoortrojan

Malware Config

Extracted

Family

smokeloader

Botnet

pub1

Extracted

Family

smokeloader

Version

2022

C2

http://sjyey.com/tmp/index.php

http://babonwo.ru/tmp/index.php

http://mth.com.ua/tmp/index.php

http://piratia.pw/tmp/index.php

http://go-piratia.ru/tmp/index.php
rc4.i32
rc4.i32

Targets

    • Target

      9966655be2002c66300f35de314f0199da38dc536e585e77ef0140b04359b8ed.exe

    • Size

      235KB

    • MD5

      8b700f852620619fb3bc409be8eea3eb

    • SHA1

      f1ca44a2b4921292f05c9f40056d7319bce15cb0

    • SHA256

      9966655be2002c66300f35de314f0199da38dc536e585e77ef0140b04359b8ed

    • SHA512

      a5afcb8d9fd1ed8172e530ae19d412258e02e2a85e278ad9b3071e8693084982038541a8fae9a46b40081fe48787248bfb341fd590bc3bce5a8bd9f8c383f32d

    • SSDEEP

      3072:gjy7KRLORAwGhOvXMYRnQ4Vsia0HvJEg7kM5tgK7JzP+HN1M8Xc85A1rpS8B:g0KRLOOhOP1nrVsiaqJEg75tvzP+BiG

    Score
    10/10
    smokeloaderpub1backdoortrojan
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

1
T1012

Peripheral Device Discovery

1
T1120

System Information Discovery

1
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks