From 609b1d04ca8dbcd561a0df4f1a0c6481ee6990a3 Mon Sep 17 00:00:00 2001
From: Gi7w0rm <89871181+Gi7w0rm@users.noreply.github.com>
Date: Thu, 27 Apr 2023 22:14:37 +0200
Subject: [PATCH] Update smoke_out_25_04_2023_JP.txt

---
 SmokeLoader/smoke_out_25_04_2023_JP.txt | 45 +++++++++----------------
 1 file changed, 15 insertions(+), 30 deletions(-)

diff --git a/SmokeLoader/smoke_out_25_04_2023_JP.txt b/SmokeLoader/smoke_out_25_04_2023_JP.txt
index e9ee57c..b0ebbc1 100644
--- a/SmokeLoader/smoke_out_25_04_2023_JP.txt
+++ b/SmokeLoader/smoke_out_25_04_2023_JP.txt
@@ -2,13 +2,13 @@
 SmokeLoader C2 URLs:
 http://host-file-host6.com/
 http://potunulit.org/
+http://firsttrusteedrx.ru/tmp/
+http://kingpirate.ru/tmp/
 
 ###################################################################################################
 SmokeLoader additional distribution:
 http://respekt5569.com/downloads/toolspub1.exe
 https://leaderspro.ps/tmp/index.php
-http://firsttrusteedrx.ru/tmp/
-http://kingpirate.ru/tmp/
 http://hugersi.com/dl/6523.exe
 
 ###################################################################################################
@@ -27,6 +27,7 @@ https://filebin.net/o87c9xsntbtaqjg7/Uefsayznff.exe -> RedLine -> C2: 185.254.37
 Payloads (down/not executed)
 https://filebin.net/0ox1glv8hj6e0ech/RuntimeBroker.exe -> https://tria.ge/230427-x5frwahd86/behavioral2  -> No C2 Comms
 https://transfer.sh/get/YGRdlX/vidar.exe -> Down
+https://nftsmean.com/new.exe -> Down
 
 ###################################################################################################
 Old Payloads:
@@ -35,40 +36,24 @@ https://cdn.discordapp.com/attachments/1069223617117814787/1069223713129635970/a
 https://cdn.discordapp.com/attachments/920726397322928168/1079835676448669768/qwfqwf.exe
 https://cdn.discordapp.com/attachments/1091449028107051142/1094520407274569738/bildak.exe
 https://cdn.discordapp.com/attachments/1082332577060356128/1087147141560012851/635965506.exe?raw
-
-
-
-
-
-
-
-
-
-
-
-
-
-
 http://colisumy.com/dl/buildz.exe
-
-
-
-
-
-
-
 http://45.9.74.80/power.exe
-
-
-
-
 http://193.233.134.117/shared/Ruzvelt.exe
-
-
 https://store1.gofile.io/download/02e69779-8bda-4464-9669-05fb0e8f9ae7/74.0.3729.108_chrome_installer.exe
 https://nftsmean.com/pro2.exe
 
 
 
-https://nftsmean.com/new.exe
+
+
+
+
+
+
+
+
+
+
+
+