cobaltstrike | e497479d9ff264d34001f73dceace3f07380f623a9bb712b81c30bd4abca5b84 | Triage

Submit
Reports

Overview

overview

Static

static

3

e497479d9f...84.exe

windows7-x64

e497479d9f...84.exe

windows10-2004-x64

Sharing

General

Target

e497479d9ff264d34001f73dceace3f07380f623a9bb712b81c30bd4abca5b84
Size

20KB
Sample

240702-f3az6s1grk
MD5

b4cdff5929c4495ba12528eccac9ebab
SHA1

44a093211d9a6beb00a1172259b1762aeeeca231
SHA256

e497479d9ff264d34001f73dceace3f07380f623a9bb712b81c30bd4abca5b84
SHA512

e5302ad79fbd57fbde4400ffc5460ec04eafd3bf487fce086c79210d8543cb845d4e8ff58c3bf3d951a919f450607ccc58f25e034ce120112102c66d341d5679
SSDEEP

192:XV7qaCF6Op1t2dobVXujRDcBaXWQjwOT/2hvjVWgWrWF8qa1Dojjgiw:BqaCF31cix+Dc4zjYvvWSFF46giw

Score

10^/10

cobaltstrike backdoor trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

e497479d9ff264d34001f73dceace3f07380f623a9bb712b81c30bd4abca5b84.exe

Resource

win7-20240611-en

cobaltstrike backdoor trojan

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral2

Sample

e497479d9ff264d34001f73dceace3f07380f623a9bb712b81c30bd4abca5b84.exe

Resource

win10v2004-20240611-en

cobaltstrike backdoor trojan

windows10-2004-x64

1 signatures

150 seconds

Malware Config

Extracted

Family

cobaltstrike

C2

http://51.161.120.85:443/Dr3t

Attributes

user_agent
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0)

Targets

- Target
  
  e497479d9ff264d34001f73dceace3f07380f623a9bb712b81c30bd4abca5b84
- Size
  
  20KB
- MD5
  
  b4cdff5929c4495ba12528eccac9ebab
- SHA1
  
  44a093211d9a6beb00a1172259b1762aeeeca231
- SHA256
  
  e497479d9ff264d34001f73dceace3f07380f623a9bb712b81c30bd4abca5b84
- SHA512
  
  e5302ad79fbd57fbde4400ffc5460ec04eafd3bf487fce086c79210d8543cb845d4e8ff58c3bf3d951a919f450607ccc58f25e034ce120112102c66d341d5679
- SSDEEP
  
  192:XV7qaCF6Op1t2dobVXujRDcBaXWQjwOT/2hvjVWgWrWF8qa1Dojjgiw:BqaCF31cix+Dc4zjYvvWSFF46giw
Score

10^/10

cobaltstrike backdoor trojan
- Cobaltstrike
  Detected malicious payload which is part of Cobaltstrike.
  trojan backdoor cobaltstrike
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

cobaltstrikebackdoortrojan

behavioral2

cobaltstrikebackdoortrojan

© 2018-2024

Terms | Privacy