cobaltstrike | 7a4be8ca81b7f58ae705491c6774bf641eac488944cc37f313be5e0801999bd8 | Triage

Submit
Reports

Overview

overview

Static

static

3

7a4be8ca81...d8.exe

windows7-x64

7a4be8ca81...d8.exe

windows10-2004-x64

Sharing

General

Target

7a4be8ca81b7f58ae705491c6774bf641eac488944cc37f313be5e0801999bd8
Size

11.4MB
Sample

240702-eznlesvhmd
MD5

11e447ed88e8332795993110710b2ff7
SHA1

fae4af78e2bb99b1a510d629963b4c551607741a
SHA256

7a4be8ca81b7f58ae705491c6774bf641eac488944cc37f313be5e0801999bd8
SHA512

fb8b4243245eb8baaa6022eb479069de8061725d340f63bf06ca4736a15103042446759121ac60ea78b6a563ab4bd28cd88a0730d4c09a85722c84c1f7337ce1
SSDEEP

196608:Jua9H1n4YZUIeeGVJsv6tWKFdu9CY+7f:xyVVJsv6tWKFdu9Cx

Score

10^/10

cobaltstrike backdoor trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

7a4be8ca81b7f58ae705491c6774bf641eac488944cc37f313be5e0801999bd8.exe

Resource

win7-20240508-en

cobaltstrike backdoor trojan

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

7a4be8ca81b7f58ae705491c6774bf641eac488944cc37f313be5e0801999bd8.exe

Resource

win10v2004-20240226-en

cobaltstrike backdoor trojan

windows10-2004-x64

4 signatures

150 seconds

Malware Config

Extracted

Family

cobaltstrike

C2

http://154.204.178.211:8031/HuNR

Attributes

user_agent
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; .NET4.0C; .NET4.0E)

Targets

- Target
  
  7a4be8ca81b7f58ae705491c6774bf641eac488944cc37f313be5e0801999bd8
- Size
  
  11.4MB
- MD5
  
  11e447ed88e8332795993110710b2ff7
- SHA1
  
  fae4af78e2bb99b1a510d629963b4c551607741a
- SHA256
  
  7a4be8ca81b7f58ae705491c6774bf641eac488944cc37f313be5e0801999bd8
- SHA512
  
  fb8b4243245eb8baaa6022eb479069de8061725d340f63bf06ca4736a15103042446759121ac60ea78b6a563ab4bd28cd88a0730d4c09a85722c84c1f7337ce1
- SSDEEP
  
  196608:Jua9H1n4YZUIeeGVJsv6tWKFdu9CY+7f:xyVVJsv6tWKFdu9Cx
Score

10^/10

cobaltstrike backdoor trojan
- Cobaltstrike
  Detected malicious payload which is part of Cobaltstrike.
  trojan backdoor cobaltstrike
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

cobaltstrikebackdoortrojan

behavioral2

cobaltstrikebackdoortrojan

© 2018-2024

Terms | Privacy