Overview

overview

10

Static

static

3

d8a85eb69d...e9.exe

windows7-x64

10

d8a85eb69d...e9.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    ae36b7e7a7292b3fea39cb7d5fce7c2254757b61852b94e7b455f358e67c2bb9

  • Size

    147KB

  • Sample

    240417-rt6k9sca55

  • MD5

    4f2653b8673ec433f1df9aa698797c51

  • SHA1

    d3b6128b52d7d0b499da1ef3cd47d94a09354429

  • SHA256

    ae36b7e7a7292b3fea39cb7d5fce7c2254757b61852b94e7b455f358e67c2bb9

  • SHA512

    c61ae7588d327ceff3a43bfcdb8c1cf34442ad395fceb68d2f4bfd6240f6ba329e76f99df307684866f8b658b23dfbc38bfd1aea8dd122cbe54866cf97d69717

  • SSDEEP

    3072:BvqVQ0J2WbfGH7AnGFP7tdDpwiWX7KV7q97jN5i6Xt24W8x6HsDodO9M:tKQ0WH7AnGFP7td2L4G91tXNUHjz

Score
10/10
smokeloaderpub3backdoortrojan

Malware Config

Extracted

Family

smokeloader

Botnet

pub3

Extracted

Family

smokeloader

Version

2022

C2

http://sjyey.com/tmp/index.php

http://babonwo.ru/tmp/index.php

http://mth.com.ua/tmp/index.php

http://piratia.pw/tmp/index.php

http://go-piratia.ru/tmp/index.php
rc4.i32
rc4.i32

Targets

    • Target

      d8a85eb69da59b65f537a2467f32089f08c527a73b2abf8dbc7d315f85a651e9.exe

    • Size

      244KB

    • MD5

      704cc92bd17776d68f70d51ed4e9caf7

    • SHA1

      50d567f29b4bcf3d3fe00ee2e25e6d5ca2ad664e

    • SHA256

      d8a85eb69da59b65f537a2467f32089f08c527a73b2abf8dbc7d315f85a651e9

    • SHA512

      f5974fd67b9db2268d7630f9b605986e85ab5e767a06655350208b55147101f429abf0ff332c9834c514e5d1b7b9a04b37e057df540a2e63ccefcd0da790ccf0

    • SSDEEP

      3072:6wZm1wLxrRmsKod3soX0KS3AqqveewbfM3Md6kb5BTdNRunrcSO4Dtl16/AaqP:nm1wu03YKAAqBbfM+SrNh

    Score
    10/10
    smokeloaderpub3backdoortrojan
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

1
T1012

Peripheral Device Discovery

1
T1120

System Information Discovery

1
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks