cobaltstrike | dbafbe9edfdac67a781756a6970a7341fd5401b0914fff7e3e8136cff0426fc5 | Triage

Sharing

General

Target

Customer Statement.exe
Size

595KB
Sample

210226-xcycqmgcp6
MD5

93498547113a518da19d5d7b38599e82
SHA1

8abc82ea38eb9d625c715385f76b727fd661fa52
SHA256

dbafbe9edfdac67a781756a6970a7341fd5401b0914fff7e3e8136cff0426fc5
SHA512

c74653c39cfdf0887bf4d8cea348629936abacb6233e8876084cfeea955316a487f34dd9667359548f1a219d304b778d110ba538c9d0ff1e609367e347014fdc

Score

10^/10

cobaltstrike backdoor trojan

Malware Config

Extracted

Family

cobaltstrike

Version

windows/download_exec

C2

http://redwelt.com:443/files/links.gif

Targets

- Target
  
  Customer Statement.exe
- Size
  
  595KB
- MD5
  
  93498547113a518da19d5d7b38599e82
- SHA1
  
  8abc82ea38eb9d625c715385f76b727fd661fa52
- SHA256
  
  dbafbe9edfdac67a781756a6970a7341fd5401b0914fff7e3e8136cff0426fc5
- SHA512
  
  c74653c39cfdf0887bf4d8cea348629936abacb6233e8876084cfeea955316a487f34dd9667359548f1a219d304b778d110ba538c9d0ff1e609367e347014fdc
Score

10^/10

cobaltstrike backdoor trojan
- Cobaltstrike
  Detected malicious payload which is part of Cobaltstrike.
  trojan backdoor cobaltstrike
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

cobaltstrikebackdoortrojan

behavioral2

cobaltstrikebackdoortrojan