General

  • Target

    fb29df411c42ed200a3539f83a0d2bc0_JaffaCakes118

  • Size

    147KB

  • Sample

    240419-zw52hsfe82

  • MD5

    fb29df411c42ed200a3539f83a0d2bc0

  • SHA1

    3ed8f8f14e42694e98e9dd4f341a9e5a78b1cf83

  • SHA256

    115410b84c37f8485e39846f3ac3f8052530d6558c3d7871c1e2e9479811aaac

  • SHA512

    88bf11ea53930dbcc6d74b65c2baa67a33f04cf91ccc6123e9da82f2feb9e320b521356c88212262bd8ae706cc7d89a70593610e38be2edeef06317ab632ef63

  • SSDEEP

    1536:BxvKpjlfDwkZTOPLcDvD5L+B64fE4LMp5yiEQ45d2ZGEmIbsaRTb9O+gPor:6zRwSD5LDZYI5r5kdAGErbsaF9rgP+

Malware Config

Extracted

Family

smokeloader

Botnet

ku11

Extracted

Family

smokeloader

Version

2020

C2

https://olobus.casa/feedback.php

https://trusho.online/feedback.php

rc4.i32
rc4.i32

Targets

    • Target

      fb29df411c42ed200a3539f83a0d2bc0_JaffaCakes118

    • Size

      147KB

    • MD5

      fb29df411c42ed200a3539f83a0d2bc0

    • SHA1

      3ed8f8f14e42694e98e9dd4f341a9e5a78b1cf83

    • SHA256

      115410b84c37f8485e39846f3ac3f8052530d6558c3d7871c1e2e9479811aaac

    • SHA512

      88bf11ea53930dbcc6d74b65c2baa67a33f04cf91ccc6123e9da82f2feb9e320b521356c88212262bd8ae706cc7d89a70593610e38be2edeef06317ab632ef63

    • SSDEEP

      1536:BxvKpjlfDwkZTOPLcDvD5L+B64fE4LMp5yiEQ45d2ZGEmIbsaRTb9O+gPor:6zRwSD5LDZYI5r5kdAGErbsaF9rgP+

MITRE ATT&CK Enterprise v15

Tasks