cobaltstrike

General

Target

52af796870be2525bd0f7a18167f46045c1b2d0136a6018e1b80329490d8beb9
Size

72KB
Sample

220917-hbym9shce8
MD5

315a5c5871b0de15997d187b93b94d97
SHA1

3ac598e3c0b67b800ff8cab0fa47ba83f3957ce0
SHA256

52af796870be2525bd0f7a18167f46045c1b2d0136a6018e1b80329490d8beb9
SHA512

aaa44261e8656cefd9ae5655c6399345b2803f2876716876c6d6033d661428facf77d54c8fced1b970c46dae8ca08ae3091a819b2774ab9c60713ea266b53f06
SSDEEP

1536:I35yR9gmdfXpxS01ZOty51jWMb+KR0Nc8QsJq39:O5SgsfZBGtje0Nc8QsC9

Score

10^/10

Malware Config

Extracted

Family

metasploit

Version

windows/reverse_http

C2

http://146.70.101.97:8080/DoyoD1ivJJwH9gb3ZPqx_QCrhTUDSCEWxEmhW39HKXj8v8cst_M4HzoOXgF2Cxvd9yFi6rMxThYQa1SPzdIcLagFOZOcg4thcta6tu0yABPmSObCIcuer9crCzLvcEW5IjpPBuILDkRZeygdz_DiF0HtbJHFTNkXxhjGP2UR-y9I_XPfR4nsS041M2gQbgTFm-Gl0uxi42jnLqC9Wu2Tx1FylGJawfp

Targets

- Target
  
  52af796870be2525bd0f7a18167f46045c1b2d0136a6018e1b80329490d8beb9
- Size
  
  72KB
- MD5
  
  315a5c5871b0de15997d187b93b94d97
- SHA1
  
  3ac598e3c0b67b800ff8cab0fa47ba83f3957ce0
- SHA256
  
  52af796870be2525bd0f7a18167f46045c1b2d0136a6018e1b80329490d8beb9
- SHA512
  
  aaa44261e8656cefd9ae5655c6399345b2803f2876716876c6d6033d661428facf77d54c8fced1b970c46dae8ca08ae3091a819b2774ab9c60713ea266b53f06
- SSDEEP
  
  1536:I35yR9gmdfXpxS01ZOty51jWMb+KR0Nc8QsJq39:O5SgsfZBGtje0Nc8QsC9
Score

10^/10

cobaltstrike backdoor trojan
- Cobaltstrike
  Detected malicious payload which is part of Cobaltstrike.
  trojan backdoor cobaltstrike
- Downloads MZ/PE file
behavioral1