cobaltstrike | d559dfcb17855aa025e0c0991e862751f50660316ec6242f2aef11c625e92158 | Triage

Submit
Reports

Overview

overview

Static

static

8

d559dfcb17...58.exe

windows7_x64

d559dfcb17...58.exe

windows10-2004_x64

Sharing

General

Target

d559dfcb17855aa025e0c0991e862751f50660316ec6242f2aef11c625e92158
Size

169KB
Sample

220705-mxh7xsace7
MD5

fd2ab16cefe743ee0dc95e6bd74e9cb2
SHA1

55d6fc1a8718b1ac7b077b24d4a8c99ae712f7cd
SHA256

d559dfcb17855aa025e0c0991e862751f50660316ec6242f2aef11c625e92158
SHA512

32cccf6e33ca58621440afb5a42601cf69c4edbad48e868fde6a7d4a54c7fe35d25413249634a1241bdd05e3ff587cd39eb4f0dfd6b75f02363026aa6f9c7388

Score

10^/10

cobaltstrike backdoor trojan upx

Static task

static1

Behavioral task

behavioral1

Sample

d559dfcb17855aa025e0c0991e862751f50660316ec6242f2aef11c625e92158.exe

Resource

win7-20220414-en

cobaltstrike backdoor trojan upx

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

d559dfcb17855aa025e0c0991e862751f50660316ec6242f2aef11c625e92158.exe

Resource

win10v2004-20220414-en

cobaltstrike backdoor trojan upx

windows10-2004_x64

0 signatures

0 seconds

Malware Config

Extracted

Family

cobaltstrike

C2

http://192.168.168.133:443/Ru4b

Attributes

user_agent
User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.0; WOW64; Trident/5.0)

Targets

- Target
  
  d559dfcb17855aa025e0c0991e862751f50660316ec6242f2aef11c625e92158
- Size
  
  169KB
- MD5
  
  fd2ab16cefe743ee0dc95e6bd74e9cb2
- SHA1
  
  55d6fc1a8718b1ac7b077b24d4a8c99ae712f7cd
- SHA256
  
  d559dfcb17855aa025e0c0991e862751f50660316ec6242f2aef11c625e92158
- SHA512
  
  32cccf6e33ca58621440afb5a42601cf69c4edbad48e868fde6a7d4a54c7fe35d25413249634a1241bdd05e3ff587cd39eb4f0dfd6b75f02363026aa6f9c7388
Score

10^/10

cobaltstrike backdoor trojan upx
- Cobaltstrike
  Detected malicious payload which is part of Cobaltstrike.
  trojan backdoor cobaltstrike
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

cobaltstrikebackdoortrojanupx

behavioral2

cobaltstrikebackdoortrojanupx

© 2018-2024

Terms | Privacy