Overview

overview

10

Static

static

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    1044-54-0x00000000287C0000-0x00000000288C1000-memory.dmp

  • Size

    1.0MB

  • MD5

    84eaef4651312ec2e02b23cab59a29c9

  • SHA1

    1162be4f87dc5d6fcdfd9e12e1deb91dd0cbe9e0

  • SHA256

    63192c6aa3f70e76006c7d2159157f4b387f06c02140ca391253a05825eb547c

  • SHA512

    c5806c5f22c2e9483dc0702f5acac533624606e80cd5dba04605b4dad8d4c0b8b1ca4f10dc2810da95b7e4254131bf226e684b3679a8f8436b72549fc849cacf

  • SSDEEP

    24:L1apq9KkmLU5WPRq095HD5BFsEgMQ9GELt:hR9j5N09J5kEgMQ9PLt

Score
10/10
cobaltstrike

Malware Config

Extracted

Family

cobaltstrike

C2

http://www.virusltotal.cf:2053/yFPN

Attributes
  • user_agent

    User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Trident/5.0; BOIE9;ENUS) Host: www.virusltotal.cf

Signatures

Files

  • 1044-54-0x00000000287C0000-0x00000000288C1000-memory.dmp