cobaltstrike | 5f48b7a9d51e61c307293429a2223e97183d138bbdd85311ff16b06948f974c2 | Triage

Analysis

max time kernel
3s
max time network
3s
platform
windows10_x64
resource
win10v20210410
submitted
21-06-2021 19:47

Sharing

Report Analysis Logs

General

Target

5f48b7a9d51e61c307293429a2223e97183d138bbdd85311ff16b06948f974c2.exe
Size

316KB
MD5

42f3be299c80a70edc6b0a51922d16e6
SHA1

f59be3f10d548f7bbe975363e5077cbe743913d2
SHA256

5f48b7a9d51e61c307293429a2223e97183d138bbdd85311ff16b06948f974c2
SHA512

6aab8bc8ac6e473f77a8d931f7e5670c4ccf7add096f3b7b5f7f548dedcbcf06a1eadef3a485070d52f1dfebc84d9fbd27643e562500940aafbc97f07e46bbac

Score

10^/10

cobaltstrike backdoor trojan

Malware Config

Signatures

Cobaltstrike
Detected malicious payload which is part of Cobaltstrike.
trojan backdoor cobaltstrike

C:\Users\Admin\AppData\Local\Temp\5f48b7a9d51e61c307293429a2223e97183d138bbdd85311ff16b06948f974c2.exe
"C:\Users\Admin\AppData\Local\Temp\5f48b7a9d51e61c307293429a2223e97183d138bbdd85311ff16b06948f974c2.exe"
1⤵
PID:1496

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/1496-114-0x00000000021F0000-0x0000000002223000-memory.dmp

Filesize
204KB

Download