cobaltstrike | e3d4d0ab02fdbe2c4861b39f7edb17a608989fb4c8e25043aff2c2295d9b901e | Triage

Submit
Reports

Overview

overview

Static

static

3

e3d4d0ab02...1e.exe

windows7-x64

e3d4d0ab02...1e.exe

windows10-2004-x64

Sharing

General

Target

e3d4d0ab02fdbe2c4861b39f7edb17a608989fb4c8e25043aff2c2295d9b901e
Size

19KB
Sample

240626-gqf64ayerg
MD5

82e9b360c9f06b9a6e4d4748c5e608ab
SHA1

9ec77247a8deb8e0876f050e6a4f3de3942a8a5e
SHA256

e3d4d0ab02fdbe2c4861b39f7edb17a608989fb4c8e25043aff2c2295d9b901e
SHA512

b0d62244de566adfa1f5d06110c82cbd4ea13fccaf9ee5dc476bed26346f0b22213887e4cf84f30f08e77452085c6306912e27c5c09dc8500abf45c6fe1ab1ec
SSDEEP

192:iV7qaCF6Op1t2dobVXujRDcBaXWQjwOT/2c6yWF8qa1Dojjgi:sqaCF31cix+Dc4zjEFF46gi

Score

10^/10

cobaltstrike backdoor trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

e3d4d0ab02fdbe2c4861b39f7edb17a608989fb4c8e25043aff2c2295d9b901e.exe

Resource

win7-20240508-en

cobaltstrike backdoor trojan

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral2

Sample

e3d4d0ab02fdbe2c4861b39f7edb17a608989fb4c8e25043aff2c2295d9b901e.exe

Resource

win10v2004-20240611-en

cobaltstrike backdoor trojan

windows10-2004-x64

1 signatures

150 seconds

Malware Config

Extracted

Family

cobaltstrike

C2

http://167.99.186.59:443/3XxZ

Attributes

user_agent
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; InfoPath.2; .NET4.0C; .NET4.0E)

Targets

- Target
  
  e3d4d0ab02fdbe2c4861b39f7edb17a608989fb4c8e25043aff2c2295d9b901e
- Size
  
  19KB
- MD5
  
  82e9b360c9f06b9a6e4d4748c5e608ab
- SHA1
  
  9ec77247a8deb8e0876f050e6a4f3de3942a8a5e
- SHA256
  
  e3d4d0ab02fdbe2c4861b39f7edb17a608989fb4c8e25043aff2c2295d9b901e
- SHA512
  
  b0d62244de566adfa1f5d06110c82cbd4ea13fccaf9ee5dc476bed26346f0b22213887e4cf84f30f08e77452085c6306912e27c5c09dc8500abf45c6fe1ab1ec
- SSDEEP
  
  192:iV7qaCF6Op1t2dobVXujRDcBaXWQjwOT/2c6yWF8qa1Dojjgi:sqaCF31cix+Dc4zjEFF46gi
Score

10^/10

cobaltstrike backdoor trojan
- Cobaltstrike
  Detected malicious payload which is part of Cobaltstrike.
  trojan backdoor cobaltstrike
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

cobaltstrikebackdoortrojan

behavioral2

cobaltstrikebackdoortrojan

© 2018-2024

Terms | Privacy