General
-
Target
ff1f36e4e741bf3a333b7f26beb870c50954445ed230a1c5819b55f3cecbfa28
-
Size
5.4MB
-
Sample
240629-mgfrvsydln
-
MD5
961498dcc65e20844c81da3073d6c5b3
-
SHA1
70aab5c916eb0f91ce6ef0ca26654260b423ad79
-
SHA256
ff1f36e4e741bf3a333b7f26beb870c50954445ed230a1c5819b55f3cecbfa28
-
SHA512
2aac99aea83c5095f7e360e0421e252146f24986ca37580bb8e44427e93a5c2a218e93de3a57db328e75262dbf97cba02651882b10c11eaf8e9070cfadd7faed
-
SSDEEP
98304:DesmBEbbyX5ICDtPfeE/joXzKzA0xZRdp3zi5u5D41fopr26/Y1C/aYpaT9+Ru:DeDEbGX5ICteEroXGzlxZV3Gu5D4S26U
Behavioral task
behavioral1
Sample
ff1f36e4e741bf3a333b7f26beb870c50954445ed230a1c5819b55f3cecbfa28.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
ff1f36e4e741bf3a333b7f26beb870c50954445ed230a1c5819b55f3cecbfa28.exe
Resource
win10v2004-20240611-en
Malware Config
Extracted
cobaltstrike
http://49.232.97.58:80/v1Mi
-
user_agent
User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0)
Targets
-
-
Target
ff1f36e4e741bf3a333b7f26beb870c50954445ed230a1c5819b55f3cecbfa28
-
Size
5.4MB
-
MD5
961498dcc65e20844c81da3073d6c5b3
-
SHA1
70aab5c916eb0f91ce6ef0ca26654260b423ad79
-
SHA256
ff1f36e4e741bf3a333b7f26beb870c50954445ed230a1c5819b55f3cecbfa28
-
SHA512
2aac99aea83c5095f7e360e0421e252146f24986ca37580bb8e44427e93a5c2a218e93de3a57db328e75262dbf97cba02651882b10c11eaf8e9070cfadd7faed
-
SSDEEP
98304:DesmBEbbyX5ICDtPfeE/joXzKzA0xZRdp3zi5u5D41fopr26/Y1C/aYpaT9+Ru:DeDEbGX5ICteEroXGzlxZV3Gu5D4S26U
Score10/10-
Loads dropped DLL
-