cobaltstrike | b6e092b5f8f73908841a430e8e45e5928d69e7a4288e6bec9a12706dddf39194 | Triage

Submit
Reports

Overview

overview

Static

static

cobaltstri...in.dll

windows7_x64

cobaltstri...in.dll

windows10_x64

Sharing

General

Target

cobaltstrike_shellcode_child2.bin
Size

201KB
Sample

210107-c3l6yl3j7n
MD5

b5c9b319bc54cbde2af2bcb3b3ee744a
SHA1

25d18f1af52c3c55b71ad20f3d87dd9a3faacabc
SHA256

b6e092b5f8f73908841a430e8e45e5928d69e7a4288e6bec9a12706dddf39194
SHA512

b5ecccc0736937a202444500a0ea39c9377a7e772d8be7872fa2b96c8b145fca9c717c15f48cb51944e9bce662d43d15844672c1e51dfebf1a4db349f7837c68

Score

10^/10

cobaltstrike backdoor trojan

Static task

static1

Behavioral task

behavioral1

Sample

cobaltstrike_shellcode_child2.bin.dll

Resource

win7v20201028

cobaltstrike backdoor trojan

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

cobaltstrike_shellcode_child2.bin.dll

Resource

win10v20201028

cobaltstrike backdoor trojan

windows10_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  cobaltstrike_shellcode_child2.bin
- Size
  
  201KB
- MD5
  
  b5c9b319bc54cbde2af2bcb3b3ee744a
- SHA1
  
  25d18f1af52c3c55b71ad20f3d87dd9a3faacabc
- SHA256
  
  b6e092b5f8f73908841a430e8e45e5928d69e7a4288e6bec9a12706dddf39194
- SHA512
  
  b5ecccc0736937a202444500a0ea39c9377a7e772d8be7872fa2b96c8b145fca9c717c15f48cb51944e9bce662d43d15844672c1e51dfebf1a4db349f7837c68
Score

10^/10

cobaltstrike backdoor trojan
- Cobaltstrike
  Detected malicious payload which is part of Cobaltstrike.
  trojan backdoor cobaltstrike
- ServiceHost packer
  Detects ServiceHost packer used for .NET malware
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

cobaltstrikebackdoortrojan

behavioral2

cobaltstrikebackdoortrojan

© 2018-2024

Terms | Privacy