cobaltstrike | 42e4083d52a41ee7d322f5b4cd2a0c5b6a72c3113b85099819a9968a2e98aea9 | Triage

Sharing

General

Target

42e4083d52a41ee7d322f5b4cd2a0c5b6a72c3113b85099819a9968a2e98aea9
Size

12KB
Sample

220105-r211raadf7
MD5

7580453f6db92422e629d3de19346688
SHA1

4b6eec94a1fc1b1d42025a4476950e846f4f8f77
SHA256

42e4083d52a41ee7d322f5b4cd2a0c5b6a72c3113b85099819a9968a2e98aea9
SHA512

e93e38e6d26998e9dedcf3370e8e12b7d1abae35c59606035243029d544ff17e2c56e9195f47e2a2a41ec83e64e0cc6fd22b43c004c019592034bd773cc5dac5

Score

10^/10

cobaltstrike backdoor trojan

Malware Config

Extracted

Family

cobaltstrike

C2

http://47.93.63.179:5812/Wc9j

Attributes

user_agent
User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0; MANM)

Targets

- Target
  
  42e4083d52a41ee7d322f5b4cd2a0c5b6a72c3113b85099819a9968a2e98aea9
- Size
  
  12KB
- MD5
  
  7580453f6db92422e629d3de19346688
- SHA1
  
  4b6eec94a1fc1b1d42025a4476950e846f4f8f77
- SHA256
  
  42e4083d52a41ee7d322f5b4cd2a0c5b6a72c3113b85099819a9968a2e98aea9
- SHA512
  
  e93e38e6d26998e9dedcf3370e8e12b7d1abae35c59606035243029d544ff17e2c56e9195f47e2a2a41ec83e64e0cc6fd22b43c004c019592034bd773cc5dac5
Score

10^/10

cobaltstrike backdoor trojan
- Cobaltstrike
  Detected malicious payload which is part of Cobaltstrike.
  trojan backdoor cobaltstrike
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

cobaltstrikebackdoortrojan

behavioral2

cobaltstrikebackdoortrojan