cobaltstrike | 1a4b7466bae2824e11582d7927638906e9b4bfcab29459fedcbb671e02d64fe7 | Triage

Submit
Reports

Overview

overview

Static

static

1a4b7466ba...e7.exe

windows7_x64

1a4b7466ba...e7.exe

windows10-2004_x64

Sharing

General

Target

1a4b7466bae2824e11582d7927638906e9b4bfcab29459fedcbb671e02d64fe7
Size

1.0MB
Sample

220706-ce6kdshde6
MD5

199b6a874e662eed3b4ca58f92209237
SHA1

3f0096a6c8c7e7c06e40cc8d044744571c5c21ce
SHA256

1a4b7466bae2824e11582d7927638906e9b4bfcab29459fedcbb671e02d64fe7
SHA512

0f591a57261cd15109ee5e376ce4e06f1daa9e4212043da564557607ef90b00e33341cbfc1042c74ce1d3ee19f01b4dbb12b952ea9158b76fb4ad1c753ee5fe5

Score

10^/10

cobaltstrike 0 backdoor trojan

Static task

static1

Behavioral task

behavioral1

Sample

1a4b7466bae2824e11582d7927638906e9b4bfcab29459fedcbb671e02d64fe7.exe

Resource

win7-20220414-en

cobaltstrike 0 backdoor trojan

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

1a4b7466bae2824e11582d7927638906e9b4bfcab29459fedcbb671e02d64fe7.exe

Resource

win10v2004-20220414-en

cobaltstrike 0 backdoor trojan

windows10-2004_x64

0 signatures

0 seconds

Malware Config

Extracted

Family

cobaltstrike

Botnet

0

Attributes

watermark
0

Targets

- Target
  
  1a4b7466bae2824e11582d7927638906e9b4bfcab29459fedcbb671e02d64fe7
- Size
  
  1.0MB
- MD5
  
  199b6a874e662eed3b4ca58f92209237
- SHA1
  
  3f0096a6c8c7e7c06e40cc8d044744571c5c21ce
- SHA256
  
  1a4b7466bae2824e11582d7927638906e9b4bfcab29459fedcbb671e02d64fe7
- SHA512
  
  0f591a57261cd15109ee5e376ce4e06f1daa9e4212043da564557607ef90b00e33341cbfc1042c74ce1d3ee19f01b4dbb12b952ea9158b76fb4ad1c753ee5fe5
Score

10^/10

cobaltstrike 0 backdoor trojan
- Cobaltstrike
  Detected malicious payload which is part of Cobaltstrike.
  trojan backdoor cobaltstrike
- Process spawned unexpected child process
  This typically indicates the parent process was compromised via an exploit or macro.
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

cobaltstrike0backdoortrojan

behavioral2

cobaltstrike0backdoortrojan

© 2018-2024

Terms | Privacy