Overview

overview

10

Static

static

9

tmp.exe

windows7_x64

10

tmp.exe

windows10-2004_x64

10

Analysis

  • max time kernel
    131s
  • max time network
    133s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-en-20220112
  • submitted
    05-03-2022 07:52

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    tmp.exe

  • Size

    366KB

  • MD5

    518d125bb64a8f8dc8b94054daf5e6df

  • SHA1

    549735f585590452985451faf8ab1e6f22903abf

  • SHA256

    950008035d225dd5f4c3a229082f1206eb9bce8c4aa4822b130db065da54e224

  • SHA512

    59ba254d3f7a37a760d709807de28b1b99bb0f92304e2177e67c30ca24b7fc4428608d392513706e663a49449f065c3719e318ddc7752d414441fe2895b1cb89

Score
10/10
cobaltstrikebackdoortrojan

Malware Config

Signatures

Processes

  • C:\Users\Admin\AppData\Local\Temp\tmp.exe
    "C:\Users\Admin\AppData\Local\Temp\tmp.exe"
    1⤵
      PID:1404

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • memory/1404-130-0x0000000000600000-0x0000000000647000-memory.dmp
      Filesize

      284KB

      Download
    • memory/1404-131-0x0000000000400000-0x000000000045E000-memory.dmp
      Filesize

      376KB

      Download
    • memory/1404-132-0x0000000002260000-0x0000000002293000-memory.dmp
      Filesize

      204KB

      Download
    • memory/1404-133-0x00000000025F0000-0x000000000262D000-memory.dmp
      Filesize

      244KB

      Download