cobaltstrike | 59584c3575b33fb716d8de1ccfd1f6f5bae74467f8b38aab171cc068112ed189 | Triage

Sharing

General

Target

download.zip
Size

596KB
Sample

210226-nxysd7d5ls
MD5

e6c2119f2eb3ed9e4beaca5b7a46816d
SHA1

c5cdb2924ec36d7b4ee564628e887e8117488762
SHA256

59584c3575b33fb716d8de1ccfd1f6f5bae74467f8b38aab171cc068112ed189
SHA512

2b0c4eaea951467c0670fd70f07043bbe449810d14353f589b6d80b2c94c8eb60a1ce24ae8bba1df2d731685f26fb3f4d9e3e2d0da8d731d172e8706b037f1c3

Score

10^/10

cobaltstrike backdoor trojan

Malware Config

Extracted

Family

cobaltstrike

Version

windows/download_exec

C2

http://redwelt.com:443/files/links.gif

Targets

- Target
  
  1b019c3102e6a47b335ad6e3c7a09a56acb36e8dcd5675d650db8be5f0f65e00
- Size
  
  595KB
- MD5
  
  cb6807a2893dc82fce63e374df9f28df
- SHA1
  
  e83722077470c3e74234d583265e429f0c082f72
- SHA256
  
  1b019c3102e6a47b335ad6e3c7a09a56acb36e8dcd5675d650db8be5f0f65e00
- SHA512
  
  0a27cb344a36fea52e0e2e42f49ef25df6691b5af45cdb8111a16d71ca469cd4cca42eef724633e1e5620e158cf4843822214e7090359558c13dc13f7ed7a58b
Score

10^/10

cobaltstrike backdoor trojan
- Cobaltstrike
  Detected malicious payload which is part of Cobaltstrike.
  trojan backdoor cobaltstrike
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

cobaltstrikebackdoortrojan

behavioral2

cobaltstrikebackdoortrojan