cobaltstrike | a2309ec306fa63c8323a5c0fad4db4796b838c41a8a501379ce96b2105812563 | Triage

Sharing

General

Target

a2309ec306fa63c8323a5c0fad4db4796b838c41a8a501379ce96b2105812563
Size

559KB
Sample

210226-a36j981k9n
MD5

c37bc4246d3fa331b166345d958b3dd3
SHA1

8dfe2dae09535f41b67cd45471ac6ca991276c5b
SHA256

a2309ec306fa63c8323a5c0fad4db4796b838c41a8a501379ce96b2105812563
SHA512

79121ed6e8e42d2fad69289cb1027bf8de41b7d6721c320ba558895628fbd166e621b4dd891a3ffcc42fc8f61fd711f4eacb4d99103713f30b71cebce15cdc42

Score

10^/10

cobaltstrike backdoor trojan

Malware Config

Extracted

Family

cobaltstrike

Version

windows/download_exec

C2

http://biollet.com:443/image-directory/sitemap.ico

Targets

- Target
  
  a2309ec306fa63c8323a5c0fad4db4796b838c41a8a501379ce96b2105812563
- Size
  
  559KB
- MD5
  
  c37bc4246d3fa331b166345d958b3dd3
- SHA1
  
  8dfe2dae09535f41b67cd45471ac6ca991276c5b
- SHA256
  
  a2309ec306fa63c8323a5c0fad4db4796b838c41a8a501379ce96b2105812563
- SHA512
  
  79121ed6e8e42d2fad69289cb1027bf8de41b7d6721c320ba558895628fbd166e621b4dd891a3ffcc42fc8f61fd711f4eacb4d99103713f30b71cebce15cdc42
Score

10^/10

cobaltstrike backdoor trojan
- Cobaltstrike
  Detected malicious payload which is part of Cobaltstrike.
  trojan backdoor cobaltstrike
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

cobaltstrikebackdoortrojan

behavioral2

cobaltstrikebackdoortrojan