General

  • Target

    583ad904b51ce0851f9f2cb056a9a2e3.exe

  • Size

    457KB

  • Sample

    210723-rzbb5bs27x

  • MD5

    583ad904b51ce0851f9f2cb056a9a2e3

  • SHA1

    daa33b986624b2156b336392c4d5cc1ddd184e56

  • SHA256

    95654525c7022015e1177ff2e8eba84837f6808b6568bccd87af3e55a3c1f481

  • SHA512

    ec96716efc1fe8662df5d9f0defa0f9d831a794d96bf8b5ad6c663395dd97c4127dbb4c1e8f73185a001722ef7861bedefda598df91739fd0a43ee05940d8f9c

Malware Config

Targets

    • Target

      583ad904b51ce0851f9f2cb056a9a2e3.exe

    • Size

      457KB

    • MD5

      583ad904b51ce0851f9f2cb056a9a2e3

    • SHA1

      daa33b986624b2156b336392c4d5cc1ddd184e56

    • SHA256

      95654525c7022015e1177ff2e8eba84837f6808b6568bccd87af3e55a3c1f481

    • SHA512

      ec96716efc1fe8662df5d9f0defa0f9d831a794d96bf8b5ad6c663395dd97c4127dbb4c1e8f73185a001722ef7861bedefda598df91739fd0a43ee05940d8f9c

    • Cobaltstrike

      Detected malicious payload which is part of Cobaltstrike.

    • Suspicious use of NtCreateUserProcessOtherParentProcess

MITRE ATT&CK Matrix

Tasks