cobaltstrike | d5417a22f68d01a223f985ced38b9793f7459d8cf1ff8bd03c8a9352a2620f2b | Triage

Submit
Reports

Overview

overview

Static

static

3

d5417a22f6...2b.exe

windows7-x64

d5417a22f6...2b.exe

windows10-2004-x64

Sharing

General

Target

d5417a22f68d01a223f985ced38b9793f7459d8cf1ff8bd03c8a9352a2620f2b
Size

19KB
Sample

240628-mge6bsxbqj
MD5

78b8ec331f2e89994661fc0adc5676d8
SHA1

043498ec2241aa715a3293d4bf138f58f81dd8a5
SHA256

d5417a22f68d01a223f985ced38b9793f7459d8cf1ff8bd03c8a9352a2620f2b
SHA512

db4f1ebacef0fe566f80ad831acb05e67ca10bd1a4bd50166fb1af93cec3a505d3ee2ca20b0bf64b2546b500ba047dcc440f27090651a970889544c7e264c00e
SSDEEP

192:1PV7qaCF6Op1t2dobVXujRDcBaXWQjwOT/2KeBmOUWF8qa1Dojjgi:1JqaCF31cix+Dc4zjZeMOhFF46gi

Score

10^/10

cobaltstrike backdoor trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

d5417a22f68d01a223f985ced38b9793f7459d8cf1ff8bd03c8a9352a2620f2b.exe

Resource

win7-20240611-en

cobaltstrike backdoor trojan

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral2

Sample

d5417a22f68d01a223f985ced38b9793f7459d8cf1ff8bd03c8a9352a2620f2b.exe

Resource

win10v2004-20240611-en

cobaltstrike backdoor trojan

windows10-2004-x64

1 signatures

150 seconds

Malware Config

Extracted

Family

cobaltstrike

C2

http://172.16.7.81:80/w1hM

Attributes

user_agent
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; InfoPath.2)

Targets

- Target
  
  d5417a22f68d01a223f985ced38b9793f7459d8cf1ff8bd03c8a9352a2620f2b
- Size
  
  19KB
- MD5
  
  78b8ec331f2e89994661fc0adc5676d8
- SHA1
  
  043498ec2241aa715a3293d4bf138f58f81dd8a5
- SHA256
  
  d5417a22f68d01a223f985ced38b9793f7459d8cf1ff8bd03c8a9352a2620f2b
- SHA512
  
  db4f1ebacef0fe566f80ad831acb05e67ca10bd1a4bd50166fb1af93cec3a505d3ee2ca20b0bf64b2546b500ba047dcc440f27090651a970889544c7e264c00e
- SSDEEP
  
  192:1PV7qaCF6Op1t2dobVXujRDcBaXWQjwOT/2KeBmOUWF8qa1Dojjgi:1JqaCF31cix+Dc4zjZeMOhFF46gi
Score

10^/10

cobaltstrike backdoor trojan
- Cobaltstrike
  Detected malicious payload which is part of Cobaltstrike.
  trojan backdoor cobaltstrike
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

cobaltstrikebackdoortrojan

behavioral2

cobaltstrikebackdoortrojan

© 2018-2024

Terms | Privacy