cobaltstrike | 6419aa3ff941635038f6ed18b64b59c413076d33e59782154fa59c65936e3915 | Triage

Submit
Reports

Overview

overview

Static

static

3

cryptolaemus

windows10-2004-x64

cryptolaemus

windows11-21h2-x64

Sharing

General

Target

6419aa3ff941635038f6ed18b64b59c413076d33e59782154fa59c65936e3915
Size

17KB
Sample

240627-jxzccssfpm
MD5

d0e72468c01cf13b48c0a5ee2a310cb2
SHA1

b936334fea97a4313b135e243867fada4bb7d1c5
SHA256

6419aa3ff941635038f6ed18b64b59c413076d33e59782154fa59c65936e3915
SHA512

7aca87eb3615432da662ebe2c627ff12837625e464aea2c2d7c592eec1fd162bf798758fd03f0841a9aab380846c84f8c4f4aa310d94f747f8afc6b53f2b7f15
SSDEEP

192:aDMAe4Ckj19RZZ6wpSfu1bKcq5uHj7khBDSeKNH4+mrCyBUbOj6kxiY:aDMAoKz6WtKEj7aBDiKmybAY

Score

10^/10

cobaltstrike backdoor trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

6419aa3ff941635038f6ed18b64b59c413076d33e59782154fa59c65936e3915.exe

Resource

win10v2004-20240508-en

cobaltstrike backdoor trojan

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral2

Sample

6419aa3ff941635038f6ed18b64b59c413076d33e59782154fa59c65936e3915.exe

Resource

win11-20240611-en

cobaltstrike backdoor trojan

windows11-21h2-x64

1 signatures

150 seconds

Malware Config

Extracted

Family

cobaltstrike

C2

http://110.41.14.58:7931/cskaocncansodf44s65d4f.jpg

Attributes

user_agent
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Trident/7.0; BOIE9;PTPT; rv:11.0) like Gecko

Targets

- Target
  
  6419aa3ff941635038f6ed18b64b59c413076d33e59782154fa59c65936e3915
- Size
  
  17KB
- MD5
  
  d0e72468c01cf13b48c0a5ee2a310cb2
- SHA1
  
  b936334fea97a4313b135e243867fada4bb7d1c5
- SHA256
  
  6419aa3ff941635038f6ed18b64b59c413076d33e59782154fa59c65936e3915
- SHA512
  
  7aca87eb3615432da662ebe2c627ff12837625e464aea2c2d7c592eec1fd162bf798758fd03f0841a9aab380846c84f8c4f4aa310d94f747f8afc6b53f2b7f15
- SSDEEP
  
  192:aDMAe4Ckj19RZZ6wpSfu1bKcq5uHj7khBDSeKNH4+mrCyBUbOj6kxiY:aDMAoKz6WtKEj7aBDiKmybAY
Score

10^/10

cobaltstrike backdoor trojan
- Cobaltstrike
  Detected malicious payload which is part of Cobaltstrike.
  trojan backdoor cobaltstrike
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

cobaltstrikebackdoortrojan

behavioral2

cobaltstrikebackdoortrojan

© 2018-2024

Terms | Privacy