General

  • Target

    1585cc8a5c403cc01450df1340d37960.exe

  • Size

    9KB

  • Sample

    220705-q5tkeabgb2

  • MD5

    1585cc8a5c403cc01450df1340d37960

  • SHA1

    dff56cae33d50951b069e6975763efe76612856e

  • SHA256

    7813f5cf2dec934b3bee4f6317f80e11e015e0598fb73c6cf3d3b666e7b540dd

  • SHA512

    57ff449893904d194854dacee51af0c9a0b8758980876a23c53f33bccf7518723efcf6f98cb52c6c41e4e920a60a30b2d7f75404cefc36d34066de42176ae027

Malware Config

Targets

    • Target

      1585cc8a5c403cc01450df1340d37960.exe

    • Size

      9KB

    • MD5

      1585cc8a5c403cc01450df1340d37960

    • SHA1

      dff56cae33d50951b069e6975763efe76612856e

    • SHA256

      7813f5cf2dec934b3bee4f6317f80e11e015e0598fb73c6cf3d3b666e7b540dd

    • SHA512

      57ff449893904d194854dacee51af0c9a0b8758980876a23c53f33bccf7518723efcf6f98cb52c6c41e4e920a60a30b2d7f75404cefc36d34066de42176ae027

    • Cobaltstrike

      Detected malicious payload which is part of Cobaltstrike.

    • suricata: ET MALWARE Possible Metasploit Payload Common Construct Bind_API (from server)

      suricata: ET MALWARE Possible Metasploit Payload Common Construct Bind_API (from server)

MITRE ATT&CK Matrix

Tasks