[2018-09-03] FalloutEK->SmokeLoader

September 03, 2018

Overview

Saz file is 2018-09-03_14-09-16.saz

(↓Analysis result using EKFiddle)

Malware

SmokeLoader

5b5a961e9f5bc9e8adc9562caa8c6e99be456fa211d9df7df996b2a18e896d74
[Hybrid-Analysis] [VirusTotal]

Traffic-Chain

http[:]//huli.cf/v3
↓
[Fallout Exploit Kit][Landing Page]
http[:]//naosecgomosec.gq/1981_02_26/6973.htm
↓
[Fallout Exploit Kit][Malware Payload]
http[:]//naosecgomosec.gq/Furies/10-01-1973.jspx