General
-
Target
6255f67da01e45cf576ab4dc6320705a702a6ebc43013e36733d90dec684e624
-
Size
19KB
-
Sample
240624-kmn93stcrh
-
MD5
40b6622a11873a76a17f4a6b231bde4a
-
SHA1
3e047bca10e1c80a7082e7945c841ead664e1c33
-
SHA256
6255f67da01e45cf576ab4dc6320705a702a6ebc43013e36733d90dec684e624
-
SHA512
f97c2877082aad61ab70395499226cbe34477de0fc7d9f4dc89a1bc3f392a7ceaae3bd832796b882a4042efdaccceee193eb47761681fd29b4b866618c40573e
-
SSDEEP
192:DV7qaCF6Op1t2dobVXujRDcBaXWQjwOT/2VAUOYNSJWF8qa1Dojjgi:tqaCF31cix+Dc4zjTScUFF46gi
Static task
static1
Behavioral task
behavioral1
Sample
6255f67da01e45cf576ab4dc6320705a702a6ebc43013e36733d90dec684e624.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
6255f67da01e45cf576ab4dc6320705a702a6ebc43013e36733d90dec684e624.exe
Resource
win10v2004-20240611-en
Malware Config
Extracted
cobaltstrike
http://148.156.71.83:35002/jquery-3.3.2.slim.min.js
-
user_agent
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: en-US,en;q=0.5 Referer: http://www.baidu.com/ Accept-Encoding: gzip, deflate User-Agent: Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.31) like Gecko Host: www.baidu.com
Targets
-
-
Target
6255f67da01e45cf576ab4dc6320705a702a6ebc43013e36733d90dec684e624
-
Size
19KB
-
MD5
40b6622a11873a76a17f4a6b231bde4a
-
SHA1
3e047bca10e1c80a7082e7945c841ead664e1c33
-
SHA256
6255f67da01e45cf576ab4dc6320705a702a6ebc43013e36733d90dec684e624
-
SHA512
f97c2877082aad61ab70395499226cbe34477de0fc7d9f4dc89a1bc3f392a7ceaae3bd832796b882a4042efdaccceee193eb47761681fd29b4b866618c40573e
-
SSDEEP
192:DV7qaCF6Op1t2dobVXujRDcBaXWQjwOT/2VAUOYNSJWF8qa1Dojjgi:tqaCF31cix+Dc4zjTScUFF46gi
Score10/10 -