cobaltstrike | 35174b5744905f9aa431cdf18ccf0d521db5f03e745fc242a632827dd756a1a6 | Triage

Sharing

General

Target

StyleToolkit.EXE
Size

577KB
Sample

210303-lk34g3zlje
MD5

b3c22a53376ee8ace4dc2f1e9173ad06
SHA1

7c8805a0262fdd67988e00be266f7551708635d0
SHA256

35174b5744905f9aa431cdf18ccf0d521db5f03e745fc242a632827dd756a1a6
SHA512

df28838a063bdd4dec3934c5bac29bca715058d40fb79a94a8f30fb2839c621ddd7a388fc68d7e0fdeb4a1fcf78ac8356f419d7bb7e712d56e12c79162c27999

Score

10^/10

cobaltstrike backdoor trojan

Malware Config

Extracted

Family

cobaltstrike

Version

windows/download_exec

C2

http://biollet.com:443/image-directory/sitemap.ico

Targets

- Target
  
  StyleToolkit.EXE
- Size
  
  577KB
- MD5
  
  b3c22a53376ee8ace4dc2f1e9173ad06
- SHA1
  
  7c8805a0262fdd67988e00be266f7551708635d0
- SHA256
  
  35174b5744905f9aa431cdf18ccf0d521db5f03e745fc242a632827dd756a1a6
- SHA512
  
  df28838a063bdd4dec3934c5bac29bca715058d40fb79a94a8f30fb2839c621ddd7a388fc68d7e0fdeb4a1fcf78ac8356f419d7bb7e712d56e12c79162c27999
Score

10^/10

cobaltstrike backdoor trojan
- Cobaltstrike
  Detected malicious payload which is part of Cobaltstrike.
  trojan backdoor cobaltstrike
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

cobaltstrikebackdoortrojan

behavioral2

cobaltstrikebackdoortrojan