From 10deaf3c63b41051596286dedbaa769a505e7d06 Mon Sep 17 00:00:00 2001
From: Gi7w0rm <89871181+Gi7w0rm@users.noreply.github.com>
Date: Thu, 27 Apr 2023 22:12:57 +0200
Subject: [PATCH] Update smoke_out_22_04_2023.txt

---
 SmokeLoader/smoke_out_22_04_2023.txt | 46 +++++++++++++++++-----------
 1 file changed, 28 insertions(+), 18 deletions(-)

diff --git a/SmokeLoader/smoke_out_22_04_2023.txt b/SmokeLoader/smoke_out_22_04_2023.txt
index f775a3a..86bddb3 100644
--- a/SmokeLoader/smoke_out_22_04_2023.txt
+++ b/SmokeLoader/smoke_out_22_04_2023.txt
@@ -1,28 +1,38 @@
-https://leaderspro.ps/tmp/index.php
+###################################################################################################
+SmokeLoader C2 URLs:
 http://firsttrusteedrx.ru/tmp/
 http://host-file-host6.com/
-http://colisumy.com/dl/buildz.exe
-https://cdn.discordapp.com/attachments/1091449028107051142/1094520407274569738/bildak.exe
 http://aapu.at/tmp/
-http://179.43.155.247/cc.exe
-https://cdn.discordapp.com/attachments/920726397322928168/1079835676448669768/qwfqwf.exe
-http://respekt5569.com/downloads/toolspub1.exe
-https://store1.gofile.io/download/02e69779-8bda-4464-9669-05fb0e8f9ae7/74.0.3729.108_chrome_installer.exe
-https://github.com/Abraham3210/bitcoin/releases/download/New/2-1_2023-04-14_08-31.exe
-https://nftsmean.com/Amadey.exe
-http://212.113.119.255/file/lega.exe
-
 http://potunulit.org/
 http://kingpirate.ru/tmp/
-https://cdn.discordapp.com/attachments/1069223617117814787/1069223713129635970/asdasdb.exe
-http://45.138.74.247/shared/Ruzvelt.exe
+
+###################################################################################################
+SmokeLoader additional distribution:
+https://leaderspro.ps/tmp/index.php
+http://respekt5569.com/downloads/toolspub1.exe
 http://hugersi.com/dl/6523.exe
+
+###################################################################################################
+Payloads:
+
+https://nhtygd.site/Fugies.exe -> RedLine (Botnet: testbuild) -> C2: 195.201.110.74:46850 
+
+###################################################################################################
+Old Payloads:
+http://colisumy.com/dl/buildz.exe
+http://179.43.155.247/cc.exe
+https://store1.gofile.io/download/02e69779-8bda-4464-9669-05fb0e8f9ae7/74.0.3729.108_chrome_installer.exe
+https://github.com/Abraham3210/bitcoin/releases/download/New/2-1_2023-04-14_08-31.exe
+http://45.138.74.247/shared/Ruzvelt.exe
 https://nftsmean.com/pro2.exe
 http://45.9.74.80/power.exe
+http://212.113.119.255/file/lega.exe
+
+###################################################################################################
+Payloads (down/not executed)
+https://cdn.discordapp.com/attachments/1091449028107051142/1094520407274569738/bildak.exe
+https://cdn.discordapp.com/attachments/920726397322928168/1079835676448669768/qwfqwf.exe
+https://cdn.discordapp.com/attachments/1069223617117814787/1069223713129635970/asdasdb.exe
 https://cdn.discordapp.com/attachments/1082332577060356128/1087147141560012851/635965506.exe?raw
-
-
+https://nftsmean.com/Amadey.exe
 https://x0.at/YTMh.exe
-
-
-https://nhtygd.site/Fugies.exe -> RedLine (Botnet: testbuild) -> C2: 195.201.110.74:46850 
\ No newline at end of file